@lazycatcloud/sdk 0.1.189 → 0.1.191

package/dist/sys/portal-server/portal-server.d.ts

@@ -52,43 +52,29 @@ export interface FreeVEIPRequest {
 }
 export interface FreeVEIPReply {
 }
-export interface AppCertRequest {
-    appid: string;
-    /** 单实例则为空，多实例为APP所部署时的UID */
-    uid: string;
-    /** 证书有效时间，单位s */
-    validSeconds: number;
-}
-export interface AppCertReply {
-    /** PEM格式的APP证书 */
-    cert: string;
-    /** PEM格式的APP私钥 */
-    privateKey: string;
-    /**
-     * 盒子证书，同一盒子内所有app的box_cert都是相同的，
-     * 可以作为CA证书的角色来使用
-     */
-    boxCert: string;
-}
 export interface AuthToken {
     /** 登陆时服务器返回的token */
     token: string;
+    /**
+     * 若token_type = HTTPBasicAuth
+     * 则必须包含此字段，以便hportal可以分析出正确的登陆设备
+     * 若仅仅是为了验证帐号密码是否正确，直接调用CheckPassword接口
+     */
+    accessIp: string;
+    tokenType: AuthToken_TokenType;
     /**
      * 若设置了此地址，则在未检测到auth-token时，
      * 可以使用返回信息中的autologin_token_request_url进行自动查找auth-token
-     * 此地址一般时ingress等组件上提供的服务。
+     * 此地址一般是ingress等组件上提供的服务。
      * 会通过html post form形式调用，附带token和redirect两个字段
      * token为自动搜索到的token，redirect为AuthToken.autologin_redirect_url的值。
      * 若token为空表示自动搜索token失败。
+     *
+     * @deprecated
      */
     autologinTokenPostUrl: string;
-    /**
-     * 若token_type = HTTPBasicAuth或使用autologin机制，
-     * 则必须包含此字段，以便hportal可以分析出正确的登陆设备
-     */
-    accessIp: string;
+    /** @deprecated */
     autologinRedirectUrl: string;
-    tokenType: AuthToken_TokenType;
 }
 export declare enum AuthToken_TokenType {
     /** Raw - token return by hportal-server login method */
@@ -102,10 +88,16 @@ export declare function authToken_TokenTypeToJSON(object: AuthToken_TokenType):
 export interface LoginInfo {
     uid: string;
     deviceId: string;
+    /**
+     * 最近登陆时间，因为针对弱网优化因此不一定等于本次登陆时间
+     * 只有hserver重启或调用了ClearLoginSession后，才会真属于退出状态
+     */
     when: Date | undefined;
     /**
      * 若uid为空, ingress应该返回此html内容给浏览器进行自动登陆。
      * 此html片段会尝试与hclient通讯获取auth-token后post到AuthToken.autologin_token_post_url上
+     *
+     * @deprecated
      */
     autologinTokenRequestContent: string;
     /** 当前登陆设备的版本信息 */
@@ -139,9 +131,9 @@ export interface DomainCertReply {
     ocsp: Uint8Array;
 }
 export interface Device {
+    /** 设备的唯一ID */
     udid: string;
-    /** TODO 待删除 */
-    peerId: string;
+    /** 此设备当前是否连接到盒子 */
     isOnline: boolean;
     /** 因为device api的监听端口可能会变化，所以此url有效性不会太长 */
     deviceApiUrl: string;
@@ -151,7 +143,18 @@ export interface Device {
     model: string;
     /** 设备绑定时间 */
     bindingTime: Date | undefined;
-    /** 设备是否是移动平台 */
+    /**
+     * TODO 待删除, 上层不应该感知peer_id
+     *
+     * @deprecated
+     */
+    peerId: string;
+    /**
+     * 设备是否是移动平台
+     * 此字段应该由上层代码自行分析
+     *
+     * @deprecated
+     */
     isMobile: boolean;
 }
 export interface ListDeviceRequest {
@@ -173,7 +176,6 @@ export interface QueryRoleReply {
 }
 export interface ResetPasswordRequest {
     uid: string;
-    oldPassword: string;
     newPassword: string;
 }
 export interface DeleteUserRequest {
@@ -184,10 +186,104 @@ export interface CreateUserRequest {
     password: string;
     role: Role;
 }
+export interface CheckPasswordRequest {
+    uid: string;
+    password: string;
+}
+export interface ClearLoginSessionRequest {
+    /** 对此UID下的所有设备进行处理 */
+    uid: string;
+    /** 但不对以下设备进行操作 */
+    excludeDevices: string[];
+}
+export interface ClearLoginSessionReply {
+}
+export interface ChangeTrustEndDeviceRequest {
+    uid: string;
+    /** 如果是Add,则此字段内容应该为合法的PeerID，若为Del则应该是device_id */
+    cid: string;
+    action: ChangeTrustEndDeviceRequest_Action;
+}
+export declare enum ChangeTrustEndDeviceRequest_Action {
+    Add = 0,
+    Del = 1,
+    UNRECOGNIZED = -1
+}
+export declare function changeTrustEndDeviceRequest_ActionFromJSON(object: any): ChangeTrustEndDeviceRequest_Action;
+export declare function changeTrustEndDeviceRequest_ActionToJSON(object: ChangeTrustEndDeviceRequest_Action): string;
+export interface ChangeTrustEndDeviceReply {
+}
+/** 此message的字段需要和hportal/apis/boxapi/common.proto中的BoxSystemStatus保持同步 */
+export interface UpdateBoxSystemStatusRequest {
+    status: UpdateBoxSystemStatusRequest_SysStatus;
+    serviceUrl: string;
+    exceptionReason?: UpdateBoxSystemStatusRequest_ExceptionReason | undefined;
+    /**
+     * 若为true, 在hclient侧生成一个临时的[fc03:1136:3800::1]:$x地址提供给客户端访问.
+     * 具体会体现在shellapi.proto:BoxInfo.BoxHomeUrl上
+     */
+    proxyTheServiceUrl: boolean;
+    /**
+     * 在proxy_the_service_url=true时，支持设置是否仅管理员用户可以访问service_url
+     * 此处的权限管控仅是网络传输层面,service_url本身需要做基本的网络隔离，比如使用unix socket协议
+     */
+    onlyAdminCanAccessServiceUrl: boolean;
+}
+export declare enum UpdateBoxSystemStatusRequest_SysStatus {
+    /** Booting - 系统正在启动中 */
+    Booting = 0,
+    /**
+     * Normal - 处于正常可用状态
+     * 一般此状态下service_url应该设置为https://$boxdomain
+     * proxy_the_service_url和only_admin_can_access_service_url都设置为false
+     */
+    Normal = 1,
+    /**
+     * Exception - 处于异常状态，具体原因可读取ExceptionReason
+     * 一般此状态下service_url需要特殊设置且
+     * proxy_the_service_url和only_admin_can_access_service_url都设置为true
+     */
+    Exception = 2,
+    UNRECOGNIZED = -1
+}
+export declare function updateBoxSystemStatusRequest_SysStatusFromJSON(object: any): UpdateBoxSystemStatusRequest_SysStatus;
+export declare function updateBoxSystemStatusRequest_SysStatusToJSON(object: UpdateBoxSystemStatusRequest_SysStatus): string;
+export declare enum UpdateBoxSystemStatusRequest_ExceptionReason {
+    /** Unknown - 其他原因 */
+    Unknown = 0,
+    /** WaitDataDiskDecryption - 等待加密数据盘被解密 */
+    WaitDataDiskDecryption = 1,
+    UNRECOGNIZED = -1
+}
+export declare function updateBoxSystemStatusRequest_ExceptionReasonFromJSON(object: any): UpdateBoxSystemStatusRequest_ExceptionReason;
+export declare function updateBoxSystemStatusRequest_ExceptionReasonToJSON(object: UpdateBoxSystemStatusRequest_ExceptionReason): string;
+export interface UpdateBoxSystemStatusResponse {
+}
+/**
+ * 以下接口废弃-------------------------
+ *
+ * @deprecated
+ */
+export interface UpdateBoxStatusRequest {
+    /** 盒子是否启动完毕 */
+    startUp?: boolean | undefined;
+    /** 盒子数据盘状态是否OK */
+    dataPartition?: boolean | undefined;
+}
+/** @deprecated */
+export interface UpdateBoxStatusResponse {
+}
+/** @deprecated */
+export interface TrustUserDeviceRequest {
+    udid: string;
+    user: string;
+}
+/** @deprecated */
 export interface ForceResetPasswordRequest {
     uid: string;
     newPassword: string;
 }
+/** @deprecated */
 export interface LogoutRequest {
     uid: string;
     /** 设备唯一id */
@@ -204,21 +300,23 @@ export declare enum LogoutRequest_Reason {
 }
 export declare function logoutRequest_ReasonFromJSON(object: any): LogoutRequest_Reason;
 export declare function logoutRequest_ReasonToJSON(object: LogoutRequest_Reason): string;
-export interface CheckPasswordRequest {
+export interface AppCertRequest {
+    appid: string;
+    /** 单实例则为空，多实例为APP所部署时的UID */
     uid: string;
-    password: string;
-}
-export interface TrustUserDeviceRequest {
-    udid: string;
-    user: string;
-}
-export interface UpdateBoxStatusRequest {
-    /** 盒子是否启动完毕 */
-    startUp?: boolean | undefined;
-    /** 盒子数据盘状态是否OK */
-    dataPartition?: boolean | undefined;
+    /** 证书有效时间，单位s */
+    validSeconds: number;
 }
-export interface UpdateBoxStatusResponse {
+export interface AppCertReply {
+    /** PEM格式的APP证书 */
+    cert: string;
+    /** PEM格式的APP私钥 */
+    privateKey: string;
+    /**
+     * 盒子证书，同一盒子内所有app的box_cert都是相同的，
+     * 可以作为CA证书的角色来使用
+     */
+    boxCert: string;
 }
 export declare const RemoteSocksRequest: {
     encode(message: RemoteSocksRequest, writer?: _m0.Writer): _m0.Writer;
@@ -299,36 +397,6 @@ export declare const FreeVEIPReply: {
     toJSON(_: FreeVEIPReply): unknown;
     fromPartial<I extends {} & {} & { [K in Exclude<keyof I, never>]: never; }>(_: I): FreeVEIPReply;
 };
-export declare const AppCertRequest: {
-    encode(message: AppCertRequest, writer?: _m0.Writer): _m0.Writer;
-    decode(input: _m0.Reader | Uint8Array, length?: number): AppCertRequest;
-    fromJSON(object: any): AppCertRequest;
-    toJSON(message: AppCertRequest): unknown;
-    fromPartial<I extends {
-        appid?: string;
-        uid?: string;
-        validSeconds?: number;
-    } & {
-        appid?: string;
-        uid?: string;
-        validSeconds?: number;
-    } & { [K in Exclude<keyof I, keyof AppCertRequest>]: never; }>(object: I): AppCertRequest;
-};
-export declare const AppCertReply: {
-    encode(message: AppCertReply, writer?: _m0.Writer): _m0.Writer;
-    decode(input: _m0.Reader | Uint8Array, length?: number): AppCertReply;
-    fromJSON(object: any): AppCertReply;
-    toJSON(message: AppCertReply): unknown;
-    fromPartial<I extends {
-        cert?: string;
-        privateKey?: string;
-        boxCert?: string;
-    } & {
-        cert?: string;
-        privateKey?: string;
-        boxCert?: string;
-    } & { [K in Exclude<keyof I, keyof AppCertReply>]: never; }>(object: I): AppCertReply;
-};
 export declare const AuthToken: {
     encode(message: AuthToken, writer?: _m0.Writer): _m0.Writer;
     decode(input: _m0.Reader | Uint8Array, length?: number): AuthToken;
@@ -336,16 +404,16 @@ export declare const AuthToken: {
     toJSON(message: AuthToken): unknown;
     fromPartial<I extends {
         token?: string;
-        autologinTokenPostUrl?: string;
         accessIp?: string;
-        autologinRedirectUrl?: string;
         tokenType?: AuthToken_TokenType;
+        autologinTokenPostUrl?: string;
+        autologinRedirectUrl?: string;
     } & {
         token?: string;
-        autologinTokenPostUrl?: string;
         accessIp?: string;
-        autologinRedirectUrl?: string;
         tokenType?: AuthToken_TokenType;
+        autologinTokenPostUrl?: string;
+        autologinRedirectUrl?: string;
     } & { [K in Exclude<keyof I, keyof AuthToken>]: never; }>(object: I): AuthToken;
 };
 export declare const LoginInfo: {
@@ -434,21 +502,21 @@ export declare const Device: {
     toJSON(message: Device): unknown;
     fromPartial<I extends {
         udid?: string;
-        peerId?: string;
         isOnline?: boolean;
         deviceApiUrl?: string;
         name?: string;
         model?: string;
         bindingTime?: Date | undefined;
+        peerId?: string;
         isMobile?: boolean;
     } & {
         udid?: string;
-        peerId?: string;
         isOnline?: boolean;
         deviceApiUrl?: string;
         name?: string;
         model?: string;
         bindingTime?: Date | undefined;
+        peerId?: string;
         isMobile?: boolean;
     } & { [K in Exclude<keyof I, keyof Device>]: never; }>(object: I): Device;
 };
@@ -471,50 +539,50 @@ export declare const ListDeviceReply: {
     fromPartial<I extends {
         devices?: {
             udid?: string;
-            peerId?: string;
             isOnline?: boolean;
             deviceApiUrl?: string;
             name?: string;
             model?: string;
             bindingTime?: Date | undefined;
+            peerId?: string;
             isMobile?: boolean;
         }[];
     } & {
         devices?: {
             udid?: string;
-            peerId?: string;
             isOnline?: boolean;
             deviceApiUrl?: string;
             name?: string;
             model?: string;
             bindingTime?: Date | undefined;
+            peerId?: string;
             isMobile?: boolean;
         }[] & ({
             udid?: string;
-            peerId?: string;
             isOnline?: boolean;
             deviceApiUrl?: string;
             name?: string;
             model?: string;
             bindingTime?: Date | undefined;
+            peerId?: string;
             isMobile?: boolean;
         } & {
             udid?: string;
-            peerId?: string;
             isOnline?: boolean;
             deviceApiUrl?: string;
             name?: string;
             model?: string;
             bindingTime?: Date | undefined;
+            peerId?: string;
             isMobile?: boolean;
         } & { [K in Exclude<keyof I["devices"][number], keyof Device>]: never; })[] & { [K_1 in Exclude<keyof I["devices"], keyof {
             udid?: string;
-            peerId?: string;
             isOnline?: boolean;
             deviceApiUrl?: string;
             name?: string;
             model?: string;
             bindingTime?: Date | undefined;
+            peerId?: string;
             isMobile?: boolean;
         }[]>]: never; };
     } & { [K_2 in Exclude<keyof I, "devices">]: never; }>(object: I): ListDeviceReply;
@@ -563,11 +631,9 @@ export declare const ResetPasswordRequest: {
     toJSON(message: ResetPasswordRequest): unknown;
     fromPartial<I extends {
         uid?: string;
-        oldPassword?: string;
         newPassword?: string;
     } & {
         uid?: string;
-        oldPassword?: string;
         newPassword?: string;
     } & { [K in Exclude<keyof I, keyof ResetPasswordRequest>]: never; }>(object: I): ResetPasswordRequest;
 };
@@ -597,59 +663,86 @@ export declare const CreateUserRequest: {
         role?: Role;
     } & { [K in Exclude<keyof I, keyof CreateUserRequest>]: never; }>(object: I): CreateUserRequest;
 };
-export declare const ForceResetPasswordRequest: {
-    encode(message: ForceResetPasswordRequest, writer?: _m0.Writer): _m0.Writer;
-    decode(input: _m0.Reader | Uint8Array, length?: number): ForceResetPasswordRequest;
-    fromJSON(object: any): ForceResetPasswordRequest;
-    toJSON(message: ForceResetPasswordRequest): unknown;
+export declare const CheckPasswordRequest: {
+    encode(message: CheckPasswordRequest, writer?: _m0.Writer): _m0.Writer;
+    decode(input: _m0.Reader | Uint8Array, length?: number): CheckPasswordRequest;
+    fromJSON(object: any): CheckPasswordRequest;
+    toJSON(message: CheckPasswordRequest): unknown;
     fromPartial<I extends {
         uid?: string;
-        newPassword?: string;
+        password?: string;
     } & {
         uid?: string;
-        newPassword?: string;
-    } & { [K in Exclude<keyof I, keyof ForceResetPasswordRequest>]: never; }>(object: I): ForceResetPasswordRequest;
+        password?: string;
+    } & { [K in Exclude<keyof I, keyof CheckPasswordRequest>]: never; }>(object: I): CheckPasswordRequest;
 };
-export declare const LogoutRequest: {
-    encode(message: LogoutRequest, writer?: _m0.Writer): _m0.Writer;
-    decode(input: _m0.Reader | Uint8Array, length?: number): LogoutRequest;
-    fromJSON(object: any): LogoutRequest;
-    toJSON(message: LogoutRequest): unknown;
+export declare const ClearLoginSessionRequest: {
+    encode(message: ClearLoginSessionRequest, writer?: _m0.Writer): _m0.Writer;
+    decode(input: _m0.Reader | Uint8Array, length?: number): ClearLoginSessionRequest;
+    fromJSON(object: any): ClearLoginSessionRequest;
+    toJSON(message: ClearLoginSessionRequest): unknown;
     fromPartial<I extends {
         uid?: string;
-        udid?: string;
-        reason?: LogoutRequest_Reason;
+        excludeDevices?: string[];
     } & {
         uid?: string;
-        udid?: string;
-        reason?: LogoutRequest_Reason;
-    } & { [K in Exclude<keyof I, keyof LogoutRequest>]: never; }>(object: I): LogoutRequest;
+        excludeDevices?: string[] & string[] & { [K in Exclude<keyof I["excludeDevices"], keyof string[]>]: never; };
+    } & { [K_1 in Exclude<keyof I, keyof ClearLoginSessionRequest>]: never; }>(object: I): ClearLoginSessionRequest;
 };
-export declare const CheckPasswordRequest: {
-    encode(message: CheckPasswordRequest, writer?: _m0.Writer): _m0.Writer;
-    decode(input: _m0.Reader | Uint8Array, length?: number): CheckPasswordRequest;
-    fromJSON(object: any): CheckPasswordRequest;
-    toJSON(message: CheckPasswordRequest): unknown;
+export declare const ClearLoginSessionReply: {
+    encode(_: ClearLoginSessionReply, writer?: _m0.Writer): _m0.Writer;
+    decode(input: _m0.Reader | Uint8Array, length?: number): ClearLoginSessionReply;
+    fromJSON(_: any): ClearLoginSessionReply;
+    toJSON(_: ClearLoginSessionReply): unknown;
+    fromPartial<I extends {} & {} & { [K in Exclude<keyof I, never>]: never; }>(_: I): ClearLoginSessionReply;
+};
+export declare const ChangeTrustEndDeviceRequest: {
+    encode(message: ChangeTrustEndDeviceRequest, writer?: _m0.Writer): _m0.Writer;
+    decode(input: _m0.Reader | Uint8Array, length?: number): ChangeTrustEndDeviceRequest;
+    fromJSON(object: any): ChangeTrustEndDeviceRequest;
+    toJSON(message: ChangeTrustEndDeviceRequest): unknown;
     fromPartial<I extends {
         uid?: string;
-        password?: string;
+        cid?: string;
+        action?: ChangeTrustEndDeviceRequest_Action;
     } & {
         uid?: string;
-        password?: string;
-    } & { [K in Exclude<keyof I, keyof CheckPasswordRequest>]: never; }>(object: I): CheckPasswordRequest;
+        cid?: string;
+        action?: ChangeTrustEndDeviceRequest_Action;
+    } & { [K in Exclude<keyof I, keyof ChangeTrustEndDeviceRequest>]: never; }>(object: I): ChangeTrustEndDeviceRequest;
 };
-export declare const TrustUserDeviceRequest: {
-    encode(message: TrustUserDeviceRequest, writer?: _m0.Writer): _m0.Writer;
-    decode(input: _m0.Reader | Uint8Array, length?: number): TrustUserDeviceRequest;
-    fromJSON(object: any): TrustUserDeviceRequest;
-    toJSON(message: TrustUserDeviceRequest): unknown;
+export declare const ChangeTrustEndDeviceReply: {
+    encode(_: ChangeTrustEndDeviceReply, writer?: _m0.Writer): _m0.Writer;
+    decode(input: _m0.Reader | Uint8Array, length?: number): ChangeTrustEndDeviceReply;
+    fromJSON(_: any): ChangeTrustEndDeviceReply;
+    toJSON(_: ChangeTrustEndDeviceReply): unknown;
+    fromPartial<I extends {} & {} & { [K in Exclude<keyof I, never>]: never; }>(_: I): ChangeTrustEndDeviceReply;
+};
+export declare const UpdateBoxSystemStatusRequest: {
+    encode(message: UpdateBoxSystemStatusRequest, writer?: _m0.Writer): _m0.Writer;
+    decode(input: _m0.Reader | Uint8Array, length?: number): UpdateBoxSystemStatusRequest;
+    fromJSON(object: any): UpdateBoxSystemStatusRequest;
+    toJSON(message: UpdateBoxSystemStatusRequest): unknown;
     fromPartial<I extends {
-        udid?: string;
-        user?: string;
+        status?: UpdateBoxSystemStatusRequest_SysStatus;
+        serviceUrl?: string;
+        exceptionReason?: UpdateBoxSystemStatusRequest_ExceptionReason | undefined;
+        proxyTheServiceUrl?: boolean;
+        onlyAdminCanAccessServiceUrl?: boolean;
     } & {
-        udid?: string;
-        user?: string;
-    } & { [K in Exclude<keyof I, keyof TrustUserDeviceRequest>]: never; }>(object: I): TrustUserDeviceRequest;
+        status?: UpdateBoxSystemStatusRequest_SysStatus;
+        serviceUrl?: string;
+        exceptionReason?: UpdateBoxSystemStatusRequest_ExceptionReason | undefined;
+        proxyTheServiceUrl?: boolean;
+        onlyAdminCanAccessServiceUrl?: boolean;
+    } & { [K in Exclude<keyof I, keyof UpdateBoxSystemStatusRequest>]: never; }>(object: I): UpdateBoxSystemStatusRequest;
+};
+export declare const UpdateBoxSystemStatusResponse: {
+    encode(_: UpdateBoxSystemStatusResponse, writer?: _m0.Writer): _m0.Writer;
+    decode(input: _m0.Reader | Uint8Array, length?: number): UpdateBoxSystemStatusResponse;
+    fromJSON(_: any): UpdateBoxSystemStatusResponse;
+    toJSON(_: UpdateBoxSystemStatusResponse): unknown;
+    fromPartial<I extends {} & {} & { [K in Exclude<keyof I, never>]: never; }>(_: I): UpdateBoxSystemStatusResponse;
 };
 export declare const UpdateBoxStatusRequest: {
     encode(message: UpdateBoxStatusRequest, writer?: _m0.Writer): _m0.Writer;
@@ -671,104 +764,208 @@ export declare const UpdateBoxStatusResponse: {
     toJSON(_: UpdateBoxStatusResponse): unknown;
     fromPartial<I extends {} & {} & { [K in Exclude<keyof I, never>]: never; }>(_: I): UpdateBoxStatusResponse;
 };
+export declare const TrustUserDeviceRequest: {
+    encode(message: TrustUserDeviceRequest, writer?: _m0.Writer): _m0.Writer;
+    decode(input: _m0.Reader | Uint8Array, length?: number): TrustUserDeviceRequest;
+    fromJSON(object: any): TrustUserDeviceRequest;
+    toJSON(message: TrustUserDeviceRequest): unknown;
+    fromPartial<I extends {
+        udid?: string;
+        user?: string;
+    } & {
+        udid?: string;
+        user?: string;
+    } & { [K in Exclude<keyof I, keyof TrustUserDeviceRequest>]: never; }>(object: I): TrustUserDeviceRequest;
+};
+export declare const ForceResetPasswordRequest: {
+    encode(message: ForceResetPasswordRequest, writer?: _m0.Writer): _m0.Writer;
+    decode(input: _m0.Reader | Uint8Array, length?: number): ForceResetPasswordRequest;
+    fromJSON(object: any): ForceResetPasswordRequest;
+    toJSON(message: ForceResetPasswordRequest): unknown;
+    fromPartial<I extends {
+        uid?: string;
+        newPassword?: string;
+    } & {
+        uid?: string;
+        newPassword?: string;
+    } & { [K in Exclude<keyof I, keyof ForceResetPasswordRequest>]: never; }>(object: I): ForceResetPasswordRequest;
+};
+export declare const LogoutRequest: {
+    encode(message: LogoutRequest, writer?: _m0.Writer): _m0.Writer;
+    decode(input: _m0.Reader | Uint8Array, length?: number): LogoutRequest;
+    fromJSON(object: any): LogoutRequest;
+    toJSON(message: LogoutRequest): unknown;
+    fromPartial<I extends {
+        uid?: string;
+        udid?: string;
+        reason?: LogoutRequest_Reason;
+    } & {
+        uid?: string;
+        udid?: string;
+        reason?: LogoutRequest_Reason;
+    } & { [K in Exclude<keyof I, keyof LogoutRequest>]: never; }>(object: I): LogoutRequest;
+};
+export declare const AppCertRequest: {
+    encode(message: AppCertRequest, writer?: _m0.Writer): _m0.Writer;
+    decode(input: _m0.Reader | Uint8Array, length?: number): AppCertRequest;
+    fromJSON(object: any): AppCertRequest;
+    toJSON(message: AppCertRequest): unknown;
+    fromPartial<I extends {
+        appid?: string;
+        uid?: string;
+        validSeconds?: number;
+    } & {
+        appid?: string;
+        uid?: string;
+        validSeconds?: number;
+    } & { [K in Exclude<keyof I, keyof AppCertRequest>]: never; }>(object: I): AppCertRequest;
+};
+export declare const AppCertReply: {
+    encode(message: AppCertReply, writer?: _m0.Writer): _m0.Writer;
+    decode(input: _m0.Reader | Uint8Array, length?: number): AppCertReply;
+    fromJSON(object: any): AppCertReply;
+    toJSON(message: AppCertReply): unknown;
+    fromPartial<I extends {
+        cert?: string;
+        privateKey?: string;
+        boxCert?: string;
+    } & {
+        cert?: string;
+        privateKey?: string;
+        boxCert?: string;
+    } & { [K in Exclude<keyof I, keyof AppCertReply>]: never; }>(object: I): AppCertReply;
+};
 export interface HPortalSys {
     /** 用auth-token反向查询登陆的设备以及UID */
     QueryLogin(request: DeepPartial<AuthToken>, metadata?: grpc.Metadata): Promise<LoginInfo>;
-    /** 根据UID返回所有的设备列表 */
-    ListDevices(request: DeepPartial<ListDeviceRequest>, metadata?: grpc.Metadata): Promise<ListDeviceReply>;
-    QueryDeviceByID(request: DeepPartial<DeviceID>, metadata?: grpc.Metadata): Promise<Device>;
     QueryBoxInfo(request: DeepPartial<Empty>, metadata?: grpc.Metadata): Promise<BoxInfo>;
     /**
      * 获取盒子所属域名下或下一级域名的https证书。
      * 注意不是所有ACME服务器都支持泛域名。
      */
     GetDomainCert(request: DeepPartial<DomainCertRequest>, metadata?: grpc.Metadata): Promise<DomainCertReply>;
-    GetDomainSelfCert(request: DeepPartial<DomainCertRequest>, metadata?: grpc.Metadata): Promise<DomainCertReply>;
-    /**
-     * 在部署具体app前，调用此接口获取app证书
-     * APP证书格式为:
-     *   Issuer: O = $BOX.ORIGIN, CN = $BOX.DOMAIN, serialNumber = $BOX.ID
-     *   Subject: O = $BOX.ORIGIN, CN = $APP.DOMAIN, serialNumber = '$UID@$APP.ID || $APP.ID'
-     * Issuer为box.crt，通过QueryBoxInfo查询到BoxInfo.BoxCrt。并且box.crt的公钥与box.id是一一对应关系。
-     *
-     * 盒子内部组件可以直接通过QueryBoxInfo来验证信任链是否合法，盒子外部系统需要通过其他机制比如libp2p.identify去验证box.crt的合法性。
-     */
-    GetAppCert(request: DeepPartial<AppCertRequest>, metadata?: grpc.Metadata): Promise<AppCertReply>;
     /** 申请额外的外部可访问的IP,并配置对应访问域名 */
     AllocVirtualExternalIP(request: DeepPartial<AllocVEIPRequest>, metadata?: grpc.Metadata): Promise<AllocVEIPReply>;
     /** 释放虚拟IP */
     FreeVirtualExternalIP(request: DeepPartial<FreeVEIPRequest>, metadata?: grpc.Metadata): Promise<FreeVEIPReply>;
     /** 查询所有UID */
     ListUsers(request: DeepPartial<Empty>, metadata?: grpc.Metadata): Promise<ListUsersReply>;
+    /** 创建用户信息 */
+    CreateUser(request: DeepPartial<CreateUserRequest>, metadata?: grpc.Metadata): Promise<Empty>;
+    /** 删除用户信息 */
+    DeleteUser(request: DeepPartial<DeleteUserRequest>, metadata?: grpc.Metadata): Promise<Empty>;
+    /** 修改新的密码 */
+    ResetPassword(request: DeepPartial<ResetPasswordRequest>, metadata?: grpc.Metadata): Promise<Empty>;
+    /** 校验用户密码是否正确 */
+    CheckPassword(request: DeepPartial<CheckPasswordRequest>, metadata?: grpc.Metadata): Promise<Empty>;
     /** 根据用户uid查询用户信息 */
     QueryRole(request: DeepPartial<UserID>, metadata?: grpc.Metadata): Promise<QueryRoleReply>;
     /** 修改指定uid的用户角色 */
     ChangeRole(request: DeepPartial<ChangeRoleReqeust>, metadata?: grpc.Metadata): Promise<Empty>;
-    /** 通过验证旧密码修改新的密码 */
-    ResetPassword(request: DeepPartial<ResetPasswordRequest>, metadata?: grpc.Metadata): Promise<Empty>;
-    /** 删除用户信息 */
-    DeleteUser(request: DeepPartial<DeleteUserRequest>, metadata?: grpc.Metadata): Promise<Empty>;
-    /** 创建用户信息 */
-    CreateUser(request: DeepPartial<CreateUserRequest>, metadata?: grpc.Metadata): Promise<Empty>;
-    /** 强制重置用户密码 */
+    /** 添加或删除受信任设备 */
+    ChangeTrustEndDevice(request: DeepPartial<ChangeTrustEndDeviceRequest>, metadata?: grpc.Metadata): Promise<ChangeTrustEndDeviceReply>;
+    /** 根据UID返回所有的设备列表 */
+    ListDevices(request: DeepPartial<ListDeviceRequest>, metadata?: grpc.Metadata): Promise<ListDeviceReply>;
+    QueryDeviceByID(request: DeepPartial<DeviceID>, metadata?: grpc.Metadata): Promise<Device>;
+    /** 删除登陆的会话状态 */
+    ClearLoginSession(request: DeepPartial<ClearLoginSessionRequest>, metadata?: grpc.Metadata): Promise<ClearLoginSessionReply>;
+    /** 获取remotesocks服务器地址 */
+    RemoteSocks(request: DeepPartial<RemoteSocksRequest>, metadata?: grpc.Metadata): Promise<RemoteSocksReply>;
+    /**
+     * hserver重启后默认设置BoxSystem为booting状态
+     * 实际的BoxSystem需要定期(建议两到三秒)设置其实际状态，避免hserver被手动或自动重启后设置的盒子系统状态错误
+     */
+    UpdateBoxSystemStatus(request: DeepPartial<UpdateBoxSystemStatusRequest>, metadata?: grpc.Metadata): Promise<UpdateBoxSystemStatusResponse>;
+    /** @deprecated */
+    GetDomainSelfCert(request: DeepPartial<DomainCertRequest>, metadata?: grpc.Metadata): Promise<DomainCertReply>;
+    /** @deprecated */
+    UpdateBoxStatus(request: DeepPartial<UpdateBoxStatusRequest>, metadata?: grpc.Metadata): Promise<UpdateBoxStatusResponse>;
+    /** @deprecated */
     ForceResetPassword(request: DeepPartial<ForceResetPasswordRequest>, metadata?: grpc.Metadata): Promise<Empty>;
-    /** 强制注销当前用户指定设备 */
+    /**
+     * 强制注销当前用户指定设备.
+     * 1. 删除设备应该通过ChangeTrustEndDevice来处理
+     * 2. 强制断开会话应该由ClearSession接口完成
+     *
+     * @deprecated
+     */
     Logout(request: DeepPartial<LogoutRequest>, metadata?: grpc.Metadata): Promise<Empty>;
-    /** 校验用户密码是否正确 */
-    CheckPassword(request: DeepPartial<CheckPasswordRequest>, metadata?: grpc.Metadata): Promise<Empty>;
-    RemoteSocks(request: DeepPartial<RemoteSocksRequest>, metadata?: grpc.Metadata): Promise<RemoteSocksReply>;
+    /**
+     * 以下接口要改名字
+     * 强制将特定设备加到受信任列表中
+     *
+     * @deprecated
+     */
     TrustUserDevice(request: DeepPartial<TrustUserDeviceRequest>, metadata?: grpc.Metadata): Promise<Empty>;
-    UpdateBoxStatus(request: DeepPartial<UpdateBoxStatusRequest>, metadata?: grpc.Metadata): Promise<UpdateBoxStatusResponse>;
+    /**
+     * hportal不应该处理app cert相关逻辑，上层逻辑应该通过GetDomainCert获取到crt和key后自行处理
+     * 在部署具体app前，调用此接口获取app证书
+     * APP证书格式为:
+     *   Issuer: O = $BOX.ORIGIN, CN = $BOX.DOMAIN, serialNumber = $BOX.ID
+     *   Subject: O = $BOX.ORIGIN, CN = $APP.DOMAIN, serialNumber = '$UID@$APP.ID || $APP.ID'
+     * Issuer为box.crt，通过QueryBoxInfo查询到BoxInfo.BoxCrt。并且box.crt的公钥与box.id是一一对应关系。
+     *
+     * 盒子内部组件可以直接通过QueryBoxInfo来验证信任链是否合法，盒子外部系统需要通过其他机制比如libp2p.identify去验证box.crt的合法性。
+     *
+     * @deprecated
+     */
+    GetAppCert(request: DeepPartial<AppCertRequest>, metadata?: grpc.Metadata): Promise<AppCertReply>;
 }
 export declare class HPortalSysClientImpl implements HPortalSys {
     private readonly rpc;
     constructor(rpc: Rpc);
     QueryLogin(request: DeepPartial<AuthToken>, metadata?: grpc.Metadata): Promise<LoginInfo>;
-    ListDevices(request: DeepPartial<ListDeviceRequest>, metadata?: grpc.Metadata): Promise<ListDeviceReply>;
-    QueryDeviceByID(request: DeepPartial<DeviceID>, metadata?: grpc.Metadata): Promise<Device>;
     QueryBoxInfo(request: DeepPartial<Empty>, metadata?: grpc.Metadata): Promise<BoxInfo>;
     GetDomainCert(request: DeepPartial<DomainCertRequest>, metadata?: grpc.Metadata): Promise<DomainCertReply>;
-    GetDomainSelfCert(request: DeepPartial<DomainCertRequest>, metadata?: grpc.Metadata): Promise<DomainCertReply>;
-    GetAppCert(request: DeepPartial<AppCertRequest>, metadata?: grpc.Metadata): Promise<AppCertReply>;
     AllocVirtualExternalIP(request: DeepPartial<AllocVEIPRequest>, metadata?: grpc.Metadata): Promise<AllocVEIPReply>;
     FreeVirtualExternalIP(request: DeepPartial<FreeVEIPRequest>, metadata?: grpc.Metadata): Promise<FreeVEIPReply>;
     ListUsers(request: DeepPartial<Empty>, metadata?: grpc.Metadata): Promise<ListUsersReply>;
+    CreateUser(request: DeepPartial<CreateUserRequest>, metadata?: grpc.Metadata): Promise<Empty>;
+    DeleteUser(request: DeepPartial<DeleteUserRequest>, metadata?: grpc.Metadata): Promise<Empty>;
+    ResetPassword(request: DeepPartial<ResetPasswordRequest>, metadata?: grpc.Metadata): Promise<Empty>;
+    CheckPassword(request: DeepPartial<CheckPasswordRequest>, metadata?: grpc.Metadata): Promise<Empty>;
     QueryRole(request: DeepPartial<UserID>, metadata?: grpc.Metadata): Promise<QueryRoleReply>;
     ChangeRole(request: DeepPartial<ChangeRoleReqeust>, metadata?: grpc.Metadata): Promise<Empty>;
-    ResetPassword(request: DeepPartial<ResetPasswordRequest>, metadata?: grpc.Metadata): Promise<Empty>;
-    DeleteUser(request: DeepPartial<DeleteUserRequest>, metadata?: grpc.Metadata): Promise<Empty>;
-    CreateUser(request: DeepPartial<CreateUserRequest>, metadata?: grpc.Metadata): Promise<Empty>;
+    ChangeTrustEndDevice(request: DeepPartial<ChangeTrustEndDeviceRequest>, metadata?: grpc.Metadata): Promise<ChangeTrustEndDeviceReply>;
+    ListDevices(request: DeepPartial<ListDeviceRequest>, metadata?: grpc.Metadata): Promise<ListDeviceReply>;
+    QueryDeviceByID(request: DeepPartial<DeviceID>, metadata?: grpc.Metadata): Promise<Device>;
+    ClearLoginSession(request: DeepPartial<ClearLoginSessionRequest>, metadata?: grpc.Metadata): Promise<ClearLoginSessionReply>;
+    RemoteSocks(request: DeepPartial<RemoteSocksRequest>, metadata?: grpc.Metadata): Promise<RemoteSocksReply>;
+    UpdateBoxSystemStatus(request: DeepPartial<UpdateBoxSystemStatusRequest>, metadata?: grpc.Metadata): Promise<UpdateBoxSystemStatusResponse>;
+    GetDomainSelfCert(request: DeepPartial<DomainCertRequest>, metadata?: grpc.Metadata): Promise<DomainCertReply>;
+    UpdateBoxStatus(request: DeepPartial<UpdateBoxStatusRequest>, metadata?: grpc.Metadata): Promise<UpdateBoxStatusResponse>;
     ForceResetPassword(request: DeepPartial<ForceResetPasswordRequest>, metadata?: grpc.Metadata): Promise<Empty>;
     Logout(request: DeepPartial<LogoutRequest>, metadata?: grpc.Metadata): Promise<Empty>;
-    CheckPassword(request: DeepPartial<CheckPasswordRequest>, metadata?: grpc.Metadata): Promise<Empty>;
-    RemoteSocks(request: DeepPartial<RemoteSocksRequest>, metadata?: grpc.Metadata): Promise<RemoteSocksReply>;
     TrustUserDevice(request: DeepPartial<TrustUserDeviceRequest>, metadata?: grpc.Metadata): Promise<Empty>;
-    UpdateBoxStatus(request: DeepPartial<UpdateBoxStatusRequest>, metadata?: grpc.Metadata): Promise<UpdateBoxStatusResponse>;
+    GetAppCert(request: DeepPartial<AppCertRequest>, metadata?: grpc.Metadata): Promise<AppCertReply>;
 }
 export declare const HPortalSysDesc: {
     serviceName: string;
 };
 export declare const HPortalSysQueryLoginDesc: UnaryMethodDefinitionish;
-export declare const HPortalSysListDevicesDesc: UnaryMethodDefinitionish;
-export declare const HPortalSysQueryDeviceByIDDesc: UnaryMethodDefinitionish;
 export declare const HPortalSysQueryBoxInfoDesc: UnaryMethodDefinitionish;
 export declare const HPortalSysGetDomainCertDesc: UnaryMethodDefinitionish;
-export declare const HPortalSysGetDomainSelfCertDesc: UnaryMethodDefinitionish;
-export declare const HPortalSysGetAppCertDesc: UnaryMethodDefinitionish;
 export declare const HPortalSysAllocVirtualExternalIPDesc: UnaryMethodDefinitionish;
 export declare const HPortalSysFreeVirtualExternalIPDesc: UnaryMethodDefinitionish;
 export declare const HPortalSysListUsersDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysCreateUserDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysDeleteUserDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysResetPasswordDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysCheckPasswordDesc: UnaryMethodDefinitionish;
 export declare const HPortalSysQueryRoleDesc: UnaryMethodDefinitionish;
 export declare const HPortalSysChangeRoleDesc: UnaryMethodDefinitionish;
-export declare const HPortalSysResetPasswordDesc: UnaryMethodDefinitionish;
-export declare const HPortalSysDeleteUserDesc: UnaryMethodDefinitionish;
-export declare const HPortalSysCreateUserDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysChangeTrustEndDeviceDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysListDevicesDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysQueryDeviceByIDDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysClearLoginSessionDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysRemoteSocksDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysUpdateBoxSystemStatusDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysGetDomainSelfCertDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysUpdateBoxStatusDesc: UnaryMethodDefinitionish;
 export declare const HPortalSysForceResetPasswordDesc: UnaryMethodDefinitionish;
 export declare const HPortalSysLogoutDesc: UnaryMethodDefinitionish;
-export declare const HPortalSysCheckPasswordDesc: UnaryMethodDefinitionish;
-export declare const HPortalSysRemoteSocksDesc: UnaryMethodDefinitionish;
 export declare const HPortalSysTrustUserDeviceDesc: UnaryMethodDefinitionish;
-export declare const HPortalSysUpdateBoxStatusDesc: UnaryMethodDefinitionish;
+export declare const HPortalSysGetAppCertDesc: UnaryMethodDefinitionish;
 interface UnaryMethodDefinitionishR extends grpc.UnaryMethodDefinition<any, any> {
     requestStream: any;
     responseStream: any;