diff --git a/.dockerignore b/.dockerignore
new file mode 100644
index 00000000..e69de29b
diff --git a/.gitignore b/.gitignore
index 1776a68d..8a796ddc 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,5 +1,5 @@
 .svn
-config.yml
+/config/config.yml
 *.db
 *.sqlite3
 *.swp
@@ -7,6 +7,7 @@ config.yml
 *.pidaproject
 *.log
 *.mo
+*.prod
 pkg
 ssl
 custom/*
@@ -18,4 +19,4 @@ resources/dev
 .bundle
 .vagrant
 Vagrantfile
-Gemfile.lock
+vendor/*
diff --git a/Dockerfile b/Dockerfile
new file mode 100644
index 00000000..81aeb865
--- /dev/null
+++ b/Dockerfile
@@ -0,0 +1,38 @@
+# We currently use Ruby 1.9.3 in prod, but bundle install is failing with that in dev.
+# We also can't use the newest ruby because it broke support for the syck gem in v2.2.
+FROM ruby:1.9
+
+#fix for jessie repo eol issues
+RUN echo "deb [check-valid-until=no] http://cdn-fastly.deb.debian.org/debian jessie main" > /etc/apt/sources.list.d/jessie.list
+RUN echo "deb [check-valid-until=no] http://archive.debian.org/debian jessie-backports main" > /etc/apt/sources.list.d/jessie-backports.list
+RUN sed -i '/deb http:\/\/deb.debian.org\/debian jessie-updates main/d' /etc/apt/sources.list
+
+# Note: gettext is installed to be able to use envsubst to inject config values
+RUN apt-get -o Acquire::Check-Valid-Until=false update -qq && apt-get install -y build-essential libpq-dev gettext vim
+
+# The rubycas Gemfile / gemspec doesn't specify a rails version since we use Apache Passenger modrails to run it in prod.  
+# Need this installed in the container to run the dev version.
+#RUN gem install rails -v 3.2
+
+# This is the version staging and prod run. This base image uses 1.9.0. 
+# Close enough that things should work, but update staging/prod if we have to get them in sync
+#RUN gem uninstall bundler 
+#RUN gem install bundler -v 1.7.3
+
+RUN mkdir /app
+WORKDIR /app
+# Note: in .dockerignore we exclude Gemfile.lock b/c we want bundle install to regenerate it for
+# this version of Ruby. It doesn't get copied over to the container if you have one laying around from a non-Docker build.
+COPY Gemfile /app/Gemfile
+COPY Gemfile.lock /app/Gemfile.lock
+COPY rubycas-server.gemspec /app/rubycas-server.gemspec
+
+# See this article for why we copy to /tmp
+# We have a runtime script to check this so we can deal
+# with changes properly when gem versions get updated.
+# https://nickjanetakis.com/blog/dealing-with-lock-files-when-using-ruby-node-and-elixir-with-docker
+RUN bundle install && cp Gemfile.lock /tmp
+
+# Do this after bundle install b/c if we do it before then changing any files
+# causes bundle install to be invalidated and run again on the next build 
+COPY . /app
diff --git a/Gemfile b/Gemfile
index 9f336726..a8b7a499 100644
--- a/Gemfile
+++ b/Gemfile
@@ -1,6 +1,9 @@
 source "http://rubygems.org"
 gemspec
 
+#gem "mysql2"
+#gem "activerecord-mysql-adapter"
+gem "pg"
 
 # Gems for authenticators
 group :ldap do
diff --git a/Gemfile.lock b/Gemfile.lock
new file mode 100644
index 00000000..edd558ff
--- /dev/null
+++ b/Gemfile.lock
@@ -0,0 +1,127 @@
+PATH
+  remote: .
+  specs:
+    rubycas-server (1.1.3.pre)
+      activerecord (>= 2.3.12, < 4.0)
+      activesupport (>= 2.3.12, < 4.0)
+      crypt-isaac (~> 0.9.1)
+      pg (= 0.17.1)
+      sinatra (~> 1.0)
+      sinatra-r18n (~> 1.1.0)
+
+GEM
+  remote: http://rubygems.org/
+  specs:
+    activemodel (3.2.19)
+      activesupport (= 3.2.19)
+      builder (~> 3.0.0)
+    activerecord (3.2.19)
+      activemodel (= 3.2.19)
+      activesupport (= 3.2.19)
+      arel (~> 3.0.2)
+      tzinfo (~> 0.3.29)
+    activeresource (3.2.19)
+      activemodel (= 3.2.19)
+      activesupport (= 3.2.19)
+    activesupport (3.2.19)
+      i18n (~> 0.6, >= 0.6.4)
+      multi_json (~> 1.0)
+    addressable (2.3.6)
+    appraisal (0.4.1)
+      bundler
+      rake
+    arel (3.0.3)
+    builder (3.0.4)
+    capybara (1.1.2)
+      mime-types (>= 1.16)
+      nokogiri (>= 1.3.3)
+      rack (>= 1.0.0)
+      rack-test (>= 0.5.4)
+      selenium-webdriver (~> 2.0)
+      xpath (~> 0.1.4)
+    childprocess (0.5.3)
+      ffi (~> 1.0, >= 1.0.11)
+    crack (0.4.2)
+      safe_yaml (~> 1.0.0)
+    crypt-isaac (0.9.1)
+    diff-lcs (1.2.5)
+    ffi (1.9.3)
+    guard (1.4.0)
+      listen (>= 0.4.2)
+      thor (>= 0.14.6)
+    guard-rspec (2.0.0)
+      guard (>= 1.1)
+      rspec (~> 2.11)
+    i18n (0.6.11)
+    listen (0.7.3)
+    mime-types (2.3)
+    mini_portile (0.6.0)
+    multi_json (1.10.1)
+    net-ldap (0.1.1)
+    nokogiri (1.6.3.1)
+      mini_portile (= 0.6.0)
+    pg (0.17.1)
+    public_suffix (1.4.3)
+    r18n-core (1.1.11)
+    rack (1.6.11)
+    rack-protection (1.5.5)
+      rack
+    rack-test (0.6.3)
+      rack (>= 1.0)
+    rake (0.8.7)
+    rb-inotify (0.8.8)
+      ffi (>= 0.5.0)
+    rspec (2.99.0)
+      rspec-core (~> 2.99.0)
+      rspec-expectations (~> 2.99.0)
+      rspec-mocks (~> 2.99.0)
+    rspec-core (2.99.2)
+    rspec-expectations (2.99.2)
+      diff-lcs (>= 1.1.3, < 2.0)
+    rspec-mocks (2.99.2)
+    rubyzip (1.1.6)
+    safe_yaml (1.0.3)
+    selenium-webdriver (2.43.0)
+      childprocess (~> 0.5)
+      multi_json (~> 1.0)
+      rubyzip (~> 1.0)
+      websocket (~> 1.0)
+    sinatra (1.4.8)
+      rack (~> 1.5)
+      rack-protection (~> 1.4)
+      tilt (>= 1.3, < 3)
+    sinatra-r18n (1.1.11)
+      r18n-core (= 1.1.11)
+      sinatra (>= 1.3)
+    sqlite3 (1.3.9)
+    thor (0.19.1)
+    tilt (2.0.9)
+    tzinfo (0.3.55)
+    webmock (1.18.0)
+      addressable (>= 2.3.6)
+      crack (>= 0.3.2)
+    websocket (1.2.1)
+    xpath (0.1.4)
+      nokogiri (~> 1.3)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  activeresource (>= 2.3.12, < 4.0)
+  appraisal (~> 0.4.1)
+  capybara (= 1.1.2)
+  guard (~> 1.4.0)
+  guard-rspec (= 2.0.0)
+  net-ldap (~> 0.1.1)
+  nokogiri (= 1.6.3.1)
+  pg
+  public_suffix (= 1.4.3)
+  rack-test (= 0.6.3)
+  rake (= 0.8.7)
+  rb-inotify (~> 0.8.8)
+  rspec
+  rspec-core
+  rubycas-server!
+  sqlite3 (~> 1.3.1)
+  webmock (~> 1.8)
diff --git a/README.md b/README.md
index 1e355299..b34dddf3 100644
--- a/README.md
+++ b/README.md
@@ -1,5 +1,23 @@
 # RubyCAS-Server
 
+## Beyond Z Customizations
+
+The file lib/casserver/views/layout.erb has the login layout html. This is based on the main site, but it is modified, so must be maintained separately.
+
+The public/ folder has image and css assets brought off the main site. These are simply downloaded from the production site and renamed - to do this, load the join.bebraven.org site in your browser, view source and find the link rel=styleshet near the top. Download that file and save it in here as public/beyondz.css. They do NOT need to be maintained separately at this time. Currently required are the logo, favicon, and stylesheet.
+
+The file lib/beyondz.rb holds our authenticator. It uses a cooperative check_credentials http api on the public site to check against the main database. It is configured via config.yml for server (string), port (integer), ssl (boolean), and allow_self_signed (boolean) to know where to connect. The default ssl options is production-ready - it will verify certificates and use SSL. For development purposes, you may turn these options off with ssl: false.
+
+## End user flow
+
+The end user should always go to the service they want to use (portal.bebraven.org for example). The service then redirects them to the single sign on server, with a service parameter telling it to redirect them back once login is complete.
+
+user goes to canvas -> canvas sends them to sso -> sso sends back to canvas
+
+On the backend, the SSO server talks to the public site server and the service (canvas) server talks to the SSO server to validate login tickets. This should be SSL secured in production so the sso and canvas servers both need working client certificates, and the sso and public site servers need to be running https.
+
+The user master record is stored on the public site. User records also need to exist on the service - so a bz.org and canvas user need to exist with the same email address for the login to succeed end to end.
+
 ## Copyright
 
 Portions contributed by Matt Zukowski are copyright (c) 2011 Urbacon Ltd.
@@ -36,3 +54,51 @@ If you have questions, try the [RubyCAS Google Group](https://groups.google.com/
 
 RubyCAS-Server is licensed for use under the terms of the MIT License.
 See the LICENSE file bundled with the official RubyCAS-Server distribution for details.
+
+## Running in a local development environment using Docker
+
+Edit `/etc/hosts` and add these values.
+```Shell
+127.0.0.1     joinweb
+127.0.0.1     ssoweb
+127.0.0.1     canvasweb
+```
+Bring up the Join server locally b/c this Docker container is configured
+to point at it for the user database / credentials. Do this by following
+the instructions [here](https://github.com/beyond-z/beyondz-platform#docker-setup)
+
+Then, from your application root just run:
+```Shell
+docker-compose up -d
+```
+When complete, the app will be available at: `http://ssoweb:3002`
+
+Note: the build will have a couple errors you can ignore. They don't
+seem to impact the functioning of the app. Just ignore:
+```Shell
+fatal: Not a git repository (or any of the parent directories): .git
+app/bin/rubycas-server maybe `gem pristine rubycas-server` will fix it?
+```
+
+Some things to keep in mind with Docker:
+* If there are build errors, run `docker-compose logs` to see what they
+  are.
+* The environment variables come from `docker-compose.yml` They are
+  injected into the container using `envsubst` in the
+`./docker-compose/scripts/docker_compose_run.sh` script.
+* If you change environment variables, rebuild to have them picked up by
+  running `./docker-compose/scripts/rebuild.sh
+* There are more scripts in `./docker-compose/scripts` to help you work
+  with the container(s).
+* If you change a file on the host (aka outside the container) it
+does not take effect inside the container. This application is rarely
+changed, so we don't mount a volume to allow files to be seamlessly
+changed inside and outside. To have a change take effect run
+`docker-compose/scripts/rebuild.sh`
+* Lastly, and this is IMPORTANT, the version of Ruby that we run on
+  production is 1.9.3. However, getting Docker building with that
+version has proven troublesome, so the Docker dev env runs Ruby 2.1. For
+that reason, DO NOT check-in the `Gemfile.lock` built on your local dev
+env or the update the `rubycas-server.gemspec`. If we have to rebuild
+gems on prod, we'll have to bite the bullet and upgrade the server (or
+consolidate the SSO server into the Join server
diff --git a/config/config.example.yml b/config/config.example.yml
index f49c5211..dd5842cd 100644
--- a/config/config.example.yml
+++ b/config/config.example.yml
@@ -18,6 +18,26 @@
 # The following are example configurations for each of these three methods:
 #
 
+# This is the domain of the main public website
+# It is used by the view to generate links back to the rest of the site on the login form.
+public_site_domain: join.bebraven.org
+
+# This is used to clear the login_message cookie after it is set by
+# a flash call on the Rails end. So it says like flash message saying
+# "your password is now reset". We read that cookie, display the message,
+# then clear the cookie so it isn't displayed twice. To clear the cookie,
+# we need to know the matching settings. cookie_domain is the configurable one.
+cookie_domain: .join.bebraven.org # this should be the *top* domain - so even for staging, it should be .join.bebraven.org still
+
+# If someone goes directly to the login url, this is where they end up
+# after a successful authentication. (They should never go directly there,
+# but copy/pasting the link could drop necessary form fields and get them
+# lost)
+default_service: http://yoursite.com/login/cas
+
+# This is the account number for google analytics. If this option is not
+# here, analytics script will not be added.
+google_analytics_account: UA-48011005-1
 
 ###
 ### WEBrick example
@@ -176,6 +196,21 @@ database:
 #  user_table: users
 #  username_column: username
 #  password_column: password
+#
+
+# Beyond Z Authenticator
+authenticator:
+  class: BeyondZ::CustomAuthenticator
+  source: beyondz.rb
+  server: join.bebraven.org
+  # We can override ssl, port, and self signed options for dev
+  # The default is to use SSL.
+  # ssl: false
+  # port: 80
+  # allow_self_signed: true
+
+
+
 #
 # When replying to a CAS client's validation request, the server will normally
 # provide the client with the authenticated user's username. However it is
diff --git a/docker-compose.yml b/docker-compose.yml
new file mode 100644
index 00000000..cb273a90
--- /dev/null
+++ b/docker-compose.yml
@@ -0,0 +1,43 @@
+version: "3.5"
+services:
+
+  ssoweb:
+    build:
+      context: .
+    command: /app/docker-compose/scripts/docker_compose_run.sh
+    # Temporarily replace the command above with this if you want the container to just stay open 
+    # so you can connect and troubleshoot b/c the container exits when you bring it up.
+    #tty: true
+    ports:
+      - "3002:3002"
+    # Make changes done outside the container reflect inside the container without needing a rebuild by mounting a volume.
+    volumes:
+      - .:/app
+    networks:
+      - bravendev
+    depends_on:
+      - ssodb
+    environment:
+      RACK_ENV: development
+      DATABASE_NAME: casserver
+      DATABASE_USER: postgres
+      DATABASE_PASSWORD:
+      DATABASE_HOST: ssodb
+
+  ssodb:
+    image: postgres:9.3
+    volumes:
+      - sso-db:/var/lib/postgresql/data
+    networks:
+      - bravendev
+    environment:
+      POSTGRES_DB: casserver
+
+# Note all Braven web app docker dev envs use this same network so they can talk to each other.
+# E.g. the hostname joinweb will resolve inside the ssoweb container if they are on the same docker network.
+networks:
+  bravendev:
+    name: braven_dev_network
+
+volumes:
+  sso-db:
diff --git a/docker-compose/config/config.yml b/docker-compose/config/config.yml
new file mode 100644
index 00000000..7f72ac3e
--- /dev/null
+++ b/docker-compose/config/config.yml
@@ -0,0 +1,587 @@
+# IMPORTANT NOTE ABOUT YAML CONFIGURATION FILES
+# ---> Be sure to use spaces instead of tabs for indentation. YAML is
+#      white-space sensitive!
+
+##### SERVER SETUP ################################################################
+
+# There are several ways to run RubyCAS-Server:
+#
+# webrick   -- stand-alone WEBrick server; should work out-of-the-box; this is
+#              the default method, but probably not suited for high-traffic usage
+# mongrel   -- stand-alone Mongrel server; fast, but you'll need to  install
+#              and compile Mongrel and run it behind an https reverse proxy like
+#              Pound or Apache 2.2's mod_proxy (since Mongrel cannot serve out
+#              over SSL on its own).
+# passenger -- served out by Apache via the mod_rails/mod_rack module
+#              (see http://www.modrails.com/)
+#
+# The following are example configurations for each of these three methods:
+#
+
+# This is the domain of the main public website
+# It is used by the view to generate links back to the rest of the site on the login form.
+public_site_domain: joinweb
+
+# This is used to clear the login_message cookie after it is set by
+# a flash call on the Rails end. So it says like flash message saying
+# "your password is now reset". We read that cookie, display the message,
+# then clear the cookie so it isn't displayed twice. To clear the cookie,
+# we need to know the matching settings. cookie_domain is the configurable one.
+cookie_domain: .localhost # this should be the *top* domain - so even for staging, it should be .join.bebraven.org still
+
+# If someone goes directly to the login url, this is where they end up
+# after a successful authentication. (They should never go directly there,
+# but copy/pasting the link could drop necessary form fields and get them
+# lost)
+default_service: http://canvasweb/login/cas
+
+# This is the account number for google analytics. If this option is not
+# here, analytics script will not be added.
+#google_analytics_account: UA-48011005-1
+
+###
+### WEBrick example
+###
+# WEBrick is a simple, all-Ruby web server. This is the easiest method for running
+# RubyCAS-Server. All you need is an SSL certificate (enter its path under the
+# ssl_cert option). WEBrick is fine for sites with low to medium traffic, but for
+# high-performance scenarios you may want to look into deploying using Mongrel
+# or Passenger.
+
+server: webrick
+port: 3002
+#ssl_cert: /path/to/your/ssl.pem
+
+# If your private key is in a separate file from the cert
+
+#ssl_key: /path/to/your/private_key.pem
+
+# If you do not already have an SSL certificate and would like to automatically
+# generate one, run the "generate_ssl_certificate" rake task and use the following
+# settings:
+
+#  ssl_cert: ssl/cert.pem
+#  ssl_key: ssl/key.pem
+
+
+# By default the login page will be available at the root path
+# (e.g. https://login.example.net/). The uri_path option lets you serve it from a
+# different path (e.g. https://login.example.net/cas).
+
+#uri_path: /cas
+
+
+# This lets you bind the server to a specific address. Use 0.0.0.0 to listen on
+# all available interfaces (this is the default).
+
+#bind_address: 0.0.0.0
+
+
+###
+### Phusion Passenger (running under Apache configured for SSL)
+###
+
+# No additional configuration is requried to run RubyCAS-Server under
+# passsenger. Just follow the normal instructions for a Passenger app
+# (see http://www.modrails.com/).
+#
+# Here's an example Apache vhost config for RubyCAS-Server and Passenger:
+#
+#  Listen 443
+#  <VirtualHost *:443>
+#     ServerAdmin admin@example.net
+#     ServerName login.example.net
+#
+#     SSLEngine On
+#     SSLCertificateFile /etc/apache2/ssl.crt/example.pem
+#
+#     RailsAutoDetect off
+#
+#     DocumentRoot /usr/lib/ruby/gems/1.8/gems/rubycas-server-0.8.0/public
+#
+#     <Directory "/usr/lib/ruby/gems/1.8/gems/rubycas-server-0.8.0/public">
+#       AllowOverride all
+#       Allow from all
+#     </Directory>
+#  </VirtualHost>
+#
+
+
+##### DATABASE #################################################################
+
+# Set up the database connection. Make sure that this database is secure!
+#
+# By default, we use MySQL, since it is widely used and does not require any
+# additional ruby libraries besides ActiveRecord.
+#
+# With MySQL, your config would be something like the following:
+# (be sure to create the casserver database in MySQL beforehand,
+#   i.e. `mysqladmin -u root create casserver`)
+
+database:
+  adapter: postgresql
+  database: ${DATABASE_NAME}
+  username: ${DATABASE_USER}
+  password: ${DATABASE_PASSWORD}
+  host: ${DATABASE_HOST}
+  reconnect: true
+
+#database:
+#  adapter: mysql
+#  database: casserver
+#  username: root
+#  password:
+#  host: localhost
+#  reconnect: true
+
+# IMPORTANT! By default, the server can handle up to ~5 concurrent requests
+# (without queuing). You can increase this by setting the database connection
+# pool size to a higher number. For example, to handle up to ~10 concurrent
+# requests:
+#
+#database:
+#  pool: 10
+#  adapter: mysql
+#  database: casserver
+#  username: root
+#  password:
+#  host: localhost
+
+#
+# Instead of MySQL you can use SQLite3, PostgreSQL, MSSQL, or anything else
+# supported by ActiveRecord.
+#
+# With SQLite3 (which does not require a separate database server), your
+# configuration would look something like the following (don't forget to install
+# the sqlite3-ruby gem beforehand!):
+
+#database:
+#  adapter: sqlite3
+#  database: /var/lib/casserver.db
+
+
+# By default RubyCAS-Server will run migrations at every startup to ensure
+# that its database schema is up-to-date. To disable this behaviour set
+# the following option to true:
+
+#disable_auto_migrations: true
+
+##### AUTHENTICATION ###########################################################
+
+# Configure how username/passwords are validated.
+#
+# !!! YOU MUST CONFIGURE AT LEAST ONE OF THESE AUTHENTICATION METHODS !!!
+#
+# There are several built-in methods for authentication:
+# SQL, ActiveDirectory, LDAP, and GoogleAccounts. If none of these work for you,
+# it is relatively easy to write your own custom Authenticator class (see below).
+#
+# === SQL Authentication =======================================================
+#
+# The simplest method is to validate against a SQL database. This assumes
+# that all of your users are stored in a table that has a 'username' column
+# and a 'password' column. When the user logs in, CAS connects to this database
+# and looks for a matching username/password in the users table. If a matching
+# username and password is found, authentication is successful.
+#
+# If you prefer to have your passwords stored in an encrypted form, have a
+# look at the SQLEncrypted authenticator:
+# http://code.google.com/p/rubycas-server/wiki/UsingTheSQLEncryptedAuthenticator
+#
+# If your users table stores passwords with MD5 hashing (for example as with
+# Drupal) try using the SQLMd5 version of the SQL authenticator.
+#
+# Example:
+#
+#authenticator:
+#  class: CASServer::Authenticators::SQL
+#  database:
+#    adapter: mysql
+#    database: some_database_with_users_table
+#    username: root
+#    password:
+#    host: localhost
+#  user_table: users
+#  username_column: username
+#  password_column: password
+#
+
+# Beyond Z Authenticator
+authenticator:
+  class: BeyondZ::CustomAuthenticator
+  source: beyondz.rb
+  # NOTE: in the local development environment, expose the Join server to this rubycas app by adding `127.0.0.1   joinweb` to your /etc/hosts file
+  server: joinweb
+  # We can override ssl, port, and self signed options for dev
+  # The default is to use SSL.
+  ssl: false
+  port: 3001
+  allow_self_signed: true
+
+
+
+#
+# When replying to a CAS client's validation request, the server will normally
+# provide the client with the authenticated user's username. However it is
+# possible for the server to provide the client with additional attributes.
+# You can configure the SQL authenticator to provide data from additional
+# columns in the users table by listing the names of the columns under the
+# 'extra_attributes' option. Note though that this functionality is experimental.
+# It should work with RubyCAS-Client, but may or may not work with other CAS
+# clients.
+#
+# For example, with this configuration, the 'full_name' and 'access_level'
+# columns will be provided to your CAS clients along with the username:
+#
+#authenticator:
+#  class: CASServer::Authenticators::SQL
+#  database:
+#    adapter: mysql
+#    database: some_database_with_users_table
+#  user_table: users
+#  username_column: username
+#  password_column: password
+#  extra_attributes: full_name, access_level
+#
+#
+#
+# === Google Authentication ====================================================
+#
+# The Google authenticator allows users to log in to your CAS server using
+# their Google account credentials (i.e. the same email and password they
+# would use to log in to Google services like Gmail). This authenticator
+# requires no special configuration -- just specify its class name:
+#
+#authenticator:
+#  class: CASServer::Authenticators::Google
+#
+# If you are behind an http proxy, you can try specifying proxy settings as follows:
+#
+#authenticator:
+#  class: CASServer::Authenticators::Google
+#  proxy:
+#    host: your-proxy-server
+#    port: 8080
+#    username: nil
+#    password: nil
+#
+# If you want to restrict access to only those Google accounts in a
+# particular domain, as might be the case for an organization that
+# uses Google for its domain's e-mail, add the restricted_domain
+# option:
+#
+#authenticator:
+#  class: CASServer::Authenticators::Google
+#  restricted_domain: example.com
+#
+# Note that as with all authenticators, it is possible to use the Google
+# authenticator alongside other authenticators. For example, CAS can first
+# attempt to validate the account with Google, and if that fails, fall back
+# to some other local authentication mechanism.
+#
+# For example:
+#
+#authenticator:
+#  - class: CASServer::Authenticators::Google
+#  - class: CASServer::Authenticators::SQL
+#    database:
+#      adapter: mysql
+#      database: some_database_with_users_table
+#      username: root
+#      password:
+#      host: localhost
+#    user_table: user
+#    username_column: username
+#    password_column: password
+#
+#
+# === ActiveDirectory Authentication ===========================================
+#
+# This method authenticates against Microsoft's Active Directory using LDAP.
+# You must configure the ActiveDirectory server, and base DN. The port number
+# and LDAP filter are optional. You must also enter a CN and password
+# for a special "authenticator" user. This account is used to log in to
+# the ActiveDirectory server and search LDAP. This does not have to be an
+# administrative account -- it only has to be able to search for other
+# users.
+#
+# Note that the auth_user parameter must be the user's CN (Common Name).
+# In Active Directory, the CN is genarally the user's full name, which is usually
+# NOT the same as their username (sAMAccountName).
+#
+# For example:
+#
+#authenticator:
+#  class: CASServer::Authenticators::ActiveDirectoryLDAP
+#  ldap:
+#    host: ad.example.net
+#    port: 389
+#    base: dc=example,dc=net
+#    filter: (objectClass=person)
+#    auth_user: authenticator
+#    auth_password: itsasecret
+#
+# A more complicated example, where the authenticator will use TLS encryption,
+# will ignore users with disabled accounts, and will pass on the 'cn' and 'mail'
+# attributes to CAS clients:
+#
+#authenticator:
+#  class: CASServer::Authenticators::ActiveDirectoryLDAP
+#  ldap:
+#    host: ad.example.net
+#    port: 636
+#    base: dc=example,dc=net
+#    filter: (objectClass=person) & !(msExchHideFromAddressLists=TRUE)
+#    auth_user: authenticator
+#    auth_password: itsasecret
+#    encryption: simple_tls
+#  extra_attributes: cn, mail
+#
+# It is possible to authenticate against Active Directory without the
+# authenticator user, but this requires that users type in their CN as
+# the username rather than typing in their sAMAccountName. In other words
+# users will likely have to authenticate by typing their full name,
+# rather than their username. If you prefer to do this, then just
+# omit the auth_user and auth_password values in the above example.
+#
+#
+# === LDAP Authentication ======================================================
+#
+# This is a more general version of the ActiveDirectory authenticator.
+# The configuration is similar, except you don't need an authenticator
+# username or password. The following example has been reported to work
+# for a basic OpenLDAP setup.
+#
+#authenticator:
+#  class: CASServer::Authenticators::LDAP
+#  ldap:
+#    host: ldap.example.net
+#    port: 389
+#    base: dc=example,dc=net
+#    username_attribute: uid
+#    filter: (objectClass=person)
+#
+# If you need more secure connections via TSL, specify the 'encryption'
+# option and change the port. This example also forces the authenticator
+# to connect using a special "authenticator" user with the given
+# username and password (see the ActiveDirectoryLDAP authenticator
+# explanation above):
+#
+#authenticator:
+#  class: CASServer::Authenticators::LDAP
+#  ldap:
+#    host: ldap.example.net
+#    port: 636
+#    base: dc=example,dc=net
+#    filter: (objectClass=person)
+#    encryption: simple_tls
+#    auth_user: cn=admin,dc=example,dc=net
+#    auth_password: secret
+#
+# If you need additional data about the user passed to the client (for example,
+# their 'cn' and 'mail' attributes, you can specify the list of attributes
+# under the extra_attributes config option:
+#
+#authenticator:
+#  class: CASServer::Authenticators::LDAP
+#  ldap:
+#    host: ldap.example.net
+#    port: 389
+#    base: dc=example,dc=net
+#    filter: (objectClass=person)
+#  extra_attributes: cn, mail
+#
+# Note that the above functionality is somewhat limited by client compatibility.
+# See the SQL authenticator notes above for more info.
+#
+#
+# === Custom Authentication ====================================================
+#
+# It should be relatively easy to write your own Authenticator class. Have a look
+# at the built-in authenticators in the casserver/authenticators directory. Your
+# authenticator should extend the CASServer::Authenticators::Base class and must
+# implement a validate() method that takes a single hash argument. When the user
+# submits the login form, the username and password they entered is passed to
+# validate() as a hash under :username and :password keys. In the future, this
+# hash might also contain other data such as the domain that the user is logging
+# in to.
+#
+# To use your custom authenticator, specify it's class name and path to the
+# source file in the authenticator section of the config. Any other parameters
+# you specify in the authenticator configuration will be passed on to the
+# authenticator and made availabe in the validate() method as an @options hash.
+#
+# Example:
+#
+#authenticator:
+#  class: FooModule::MyCustomAuthenticator
+#  source: /path/to/source.rb
+#  option_a: foo
+#  another_option: yeeha
+#
+# === Multiple Authenticators ==================================================
+#
+# If you need to have more than one source for authentication, such as an LDAP
+# directory and a database, you can use multiple authenticators by making
+# :authenticator an array of authenticators.
+#
+#authenticator:
+#  -
+#    class: CASServer::Authenticators::ActiveDirectoryLDAP
+#    ldap:
+#      host: ad.example.net
+#      port: 389
+#      base: dc=example,dc=net
+#      filter: (objectClass=person)
+#  -
+#    class: CASServer::Authenticators::SQL
+#    database:
+#      adapter: mysql
+#      database: some_database_with_users_table
+#      username: root
+#      password:
+#      host: localhost
+#    user_table: user
+#    username_column: username
+#    password_column: password
+#
+# During authentication, the user credentials will be checked against the first
+# authenticator and on failure fall through to the second authenticator.
+#
+
+
+##### LOOK & FEEL ##############################################################
+
+# Set the path to the theme directory that determines how your CAS pages look.
+#
+# Custom themes are not well supported yet, but will be in the near future. In
+# the meantime, if you want to create a custom theme, you can create a
+# subdirectory under the CASServer's themes dir (for example,
+# '/usr/lib/ruby/1.8/gems/casserver-xxx/public/themes', if you installed CASServer
+# on Linux as a gem). A theme is basically just a theme.css file that overrides
+# the themes/cas.css styles along with a collection of image files
+# like logo.png and bg.png.
+#
+# By default, we use the 'simple' theme which you can find in themes/simple.
+theme: simple
+
+# The name of your company/organization. This will show up on the login page.
+organization: Braven Docker SSO
+
+# A short bit of text that shows up on the login page. You can make this blank
+# if you prefer to have no extra text shown at the bottom of the login box.
+infoline: Powered by <a href="http://rubycas.github.com">RubyCAS-Server</a>
+
+# Custom views directory. If set, this will be used instead of 'lib/casserver/views'.
+#custom_views: /path/to/custom/views
+
+# Custom public directory. If set, static content (css, etc.) will be served from here rather
+# than from rubycas-server's internal 'public' directory (but be mindful of any overriding
+# settings you may have in your web server's config).
+#public_dir: /path/to/custom/public
+
+##### LOCALIZATION (L10N) #######################################################
+# The server will attempt to detect the user's locale and show text in the
+# appropriate language based on:
+#
+#   1. The 'locale' URL parameter (if any)
+#   2. The 'locale' session (if any)
+#   3. The HTTP_ACCEPT_LANGUAGE header supplied by the user's browser.
+#
+# The format is the same as standard linux locales (langagecode_COUNTRYCODE):
+#
+#   ru_RU - Russian, Russia
+#   eo_AQ - Esperanto, Antarctica
+#
+# It will also work if you leave out the region (i.e. just "ru" for Russian,
+# "eo" for Esperanto).
+#
+# If you are interested in contributing new translations or have corrections
+# to the existing translations, see
+# https://github.com/rubycas/rubycas-server/wiki/Localization
+
+##### LOGGING ##################################################################
+
+# Configure general logging. This log is where you'll want to look in case of
+# problems.
+#
+# You may want to change the file to something like /var/log/casserver.log
+# Set the level to DEBUG if you want more detailed logging.
+
+log:
+  file: /var/log/casserver.log
+  level: DEBUG
+
+
+# If you want full database logging, uncomment this next section.
+# Every SQL query will be logged here. This is useful for debugging database
+# problems.
+
+#db_log:
+#  file: /var/log/casserver_db.log
+
+
+# Setting the following option to true will disable CLI output to stdout.
+# i.e. this will get rid of messages like ">>> Redirecting RubyCAS-Server log..."
+# This is useful when, for example, you're running rspecs.
+
+#quiet: true
+
+
+##### SINGLE SIGN-OUT ##########################################################
+
+# When a user logs in to a CAS-enabled client application, that application
+# generally opens its own local user session. When the user then logs out
+# through the CAS server, each of the CAS-enabled client applications need
+# to be notified so that they can close their own local sessions for that user.
+#
+# Up until recently this was not possible within CAS. However, a method for
+# performing this notification was recently added to the protocol (in CAS 3.1).
+# This works exactly as described above -- when the user logs out, the CAS
+# server individually contacts each client service and notifies it of the
+# logout. Currently not all client applications support this, so this
+# behaviour is disabled by default. To enable it, uncomment the following
+# configuration line. Note that currently it is not possible to enable
+# or disable single-sign-out on a per-service basis, but this functionality
+# is planned for a future release.
+
+#enable_single_sign_out: true
+
+
+##### OTHER ####################################################################
+
+# You can set various ticket expiry times (specify the value in seconds).
+
+# Unused login and service tickets become unusable this many seconds after
+# they are created. (Defaults to 5 minutes)
+
+#maximum_unused_login_ticket_lifetime: 300
+#maximum_unused_service_ticket_lifetime: 300
+
+# The server must periodically delete old tickets (login tickets, service tickets
+# proxy-granting tickets, and ticket-granting tickets) to prevent buildup of
+# stale data. This effectively limits the maximum length of a CAS session to
+# the lifetime given here (in seconds). (Defaults to 48 hours)
+#
+# Note that this limit is not enforced on the client side; it refers only to the
+# the maximum lifetime of tickets on the CAS server.
+
+#maximum_session_lifetime: 172800
+
+
+# If you want the usernames entered on the login page to be automatically
+# downcased (converted to lowercase), enable the following option. When this
+# option is set to true, if the user enters "JSmith" as their username, the
+# system will automatically
+# convert this to "jsmith".
+
+#downcase_username: true
+
+# If you'd like to limit the service hosts that can use CAS for authentication,
+# add the individual IPs and IP ranges in CIDR notation below. Leaving this
+# setting blank will allow any server to authenticate users via the CAS server
+# and potentially harvest sensitive user information.
+
+#allowed_service_ips:
+#  - 127.0.0.1
+#  - 192.168.0.0/24
diff --git a/docker-compose/scripts/appconnect.sh b/docker-compose/scripts/appconnect.sh
new file mode 100755
index 00000000..a7db9414
--- /dev/null
+++ b/docker-compose/scripts/appconnect.sh
@@ -0,0 +1,2 @@
+#!/bin/bash
+docker-compose exec ssoweb /bin/bash
diff --git a/docker-compose/scripts/dbconnect.sh b/docker-compose/scripts/dbconnect.sh
new file mode 100755
index 00000000..fcc1756b
--- /dev/null
+++ b/docker-compose/scripts/dbconnect.sh
@@ -0,0 +1,3 @@
+#!/bin/bash
+# This connects to the development database. The user and database name are in docker-compose.yml
+docker-compose exec ssodb psql -U postgres casserver
diff --git a/docker-compose/scripts/docker_compose_run.sh b/docker-compose/scripts/docker_compose_run.sh
new file mode 100755
index 00000000..877e0f13
--- /dev/null
+++ b/docker-compose/scripts/docker_compose_run.sh
@@ -0,0 +1,29 @@
+#!/bin/bash
+
+# Take the environment variables setup in docker-compose.yml and inject their values
+# into the actual application config.yml file. Note: envsubst needs gettext to be installed.
+envsubst < /app/docker-compose/config/config.yml > /app/config/config.yml
+
+# Take from here: https://nickjanetakis.com/blog/dealing-with-lock-files-when-using-ruby-node-and-elixir-with-docker
+# To deal with problems when the Gemfile.lock changes in between runs of
+# bundle install
+set -e
+
+built_lock_file="/tmp/Gemfile.lock"
+current_lock_file="Gemfile.lock"
+
+function cp_built_lock_file() {
+    cp "${built_lock_file}" "${current_lock_file}"
+}
+
+if [ -f "${current_lock_file}" ]; then
+    diff="$(diff "${built_lock_file}" "${current_lock_file}")"
+    if [ "${diff}" != "" 2>/dev/null ]; then
+        cp_built_lock_file
+    fi
+else
+    cp_built_lock_file
+fi
+
+
+bundle exec rubycas-server -p 3002 -c /app/config/config.yml
diff --git a/docker-compose/scripts/rebuild.sh b/docker-compose/scripts/rebuild.sh
new file mode 100755
index 00000000..d0bf1d69
--- /dev/null
+++ b/docker-compose/scripts/rebuild.sh
@@ -0,0 +1,3 @@
+#!/bin/bash
+docker-compose down 
+docker-compose up -d --force-recreate --build
diff --git a/docker-compose/scripts/restart.sh b/docker-compose/scripts/restart.sh
new file mode 100755
index 00000000..594a6154
--- /dev/null
+++ b/docker-compose/scripts/restart.sh
@@ -0,0 +1,3 @@
+#!/bin/bash
+docker-compose down 
+docker-compose up -d
diff --git a/lib/beyondz.rb b/lib/beyondz.rb
new file mode 100644
index 00000000..e4057a23
--- /dev/null
+++ b/lib/beyondz.rb
@@ -0,0 +1,31 @@
+module BeyondZ
+  class CustomAuthenticator < CASServer::Authenticators::Base
+    def self.setup(options)
+      raise CASServer::AuthenticatorError, "Authenticator configuration needs server" unless options[:server]
+
+      @@server = options[:server]
+      @@ssl = (!options[:ssl].nil?) ? options[:ssl] : true
+      @@port = (!options[:port].nil?) ? options[:port] : (@@ssl ? 443 : 80)
+      @@allow_self_signed = (!options[:allow_self_signed].nil?) ? options[:allow_self_signed] : false
+    end
+
+    def validate(credentials)
+      http = Net::HTTP.new(@@server, @@port)
+      if @@ssl
+        http.use_ssl = true
+        if @@allow_self_signed
+          http.verify_mode = OpenSSL::SSL::VERIFY_NONE # self-signed cert would fail
+        end
+      end
+
+      request = Net::HTTP::Post.new('/users/check_credentials')
+      request.set_form_data(
+        'username' => credentials[:username],
+        'password' => credentials[:password]
+      )
+      response = http.request(request)
+
+      return (response.body == "true")
+    end
+  end
+end
diff --git a/lib/casserver/cas.rb b/lib/casserver/cas.rb
index d652d217..b308384d 100644
--- a/lib/casserver/cas.rb
+++ b/lib/casserver/cas.rb
@@ -304,7 +304,7 @@ def service_uri_with_ticket(service, st)
   # removed, so that "http://google.com?ticket=12345&ticket=abcd" would be
   # returned as "http://google.com?ticket=abcd".
   def clean_service_url(dirty_service)
-    return dirty_service if dirty_service.blank?
+    return settings.config[:default_service] if dirty_service.blank?
     clean_service = dirty_service.dup
     ['service', 'ticket', 'gateway', 'renew'].each do |p|
       clean_service.sub!(Regexp.new("&?#{p}=[^&]*"), '')
diff --git a/lib/casserver/server.rb b/lib/casserver/server.rb
index 77f7633a..567bb8d9 100644
--- a/lib/casserver/server.rb
+++ b/lib/casserver/server.rb
@@ -14,6 +14,18 @@ class Server < CASServer::Base
 
     include CASServer::CAS # CAS protocol helpers
 
+    # We have to disable the iframe restriction to permit auto login
+    # in the Canvas resume module. The risk of this is minor because an
+    # iframe clickjacker wouldn't give the user a chance to enter their
+    # credentials anyway and even if they did, it is still sent to us!
+    #
+    # iframe restrictions are most meaningful on sites where a user is
+    # already logged in and one click can get them to do something nasty.
+    # That's just not the case on the sso server, with the exception of
+    # logout... but the worst that could do is annoy users, there's no
+    # risk of loss of information.
+    set :protection, :except => :frame_options
+
     # Use :public_folder for Sinatra >= 1.3, and :public for older versions.
     def self.use_public_folder?
       Sinatra.const_defined?("VERSION") && Gem::Version.new(Sinatra::VERSION) >= Gem::Version.new("1.3.0")
@@ -278,6 +290,9 @@ def self.init_database!
       content_type :html, 'charset' => 'utf-8'
       @theme = settings.config[:theme]
       @organization = settings.config[:organization]
+      @google_analytics_account = settings.config[:google_analytics_account]
+      @domain = settings.config[:public_site_domain]
+      @cookie_domain = settings.config[:cookie_domain]
       @uri_path = settings.config[:uri_path]
       @infoline = settings.config[:infoline]
       @custom_views = settings.config[:custom_views]
@@ -398,7 +413,7 @@ def self.init_database!
       @service = clean_service_url(params['service'])
 
       # 2.2.2 (required)
-      @username = params['username']
+      @username = params['username'].downcase # this ensures we always use lowercase for ease of case comparison throughout the system
       @password = params['password']
       @lt = params['lt']
 
@@ -513,7 +528,10 @@ def self.init_database!
       # "logout" page, we take the user back to the login page with a "you have been logged out"
       # message, allowing for an opportunity to immediately log back in. This makes it
       # easier for the user to log out and log in as someone else.
-      @service = clean_service_url(params['service'] || params['destination'])
+
+      # BZ modification: always use default service so logout/login goes back to our main
+      # site (which can redirect) regardless of where they came from
+      @service = clean_service_url(params['service'] || settings.config[:default_service]) # params['service'] || params['destination'])
       @continue_url = params['url']
 
       @gateway = params['gateway'] == 'true' || params['gateway'] == '1'
@@ -554,10 +572,21 @@ def self.init_database!
 
       @message[:message] += t.notice.click_to_continue if @continue_url
 
+      @log_out_of_services = true
+
       @lt = generate_login_ticket
 
       if @gateway && @service
-        redirect @service, 303
+        # I'm changing this to render the logout instead of redirecting
+        # because the redirection wouldn't give a chance for the logout
+        # iframe trick to log out of the main site. Since we also have
+        # a default service now in the configuration, it isn't as important
+        # for that to be preserved anyway - it will send them back to the
+        # default service which is good for us too as we can then handle
+        # the redirect based on the user account type automatically.
+
+        # redirect @service, 303
+        render @template_engine, :login
       elsif @continue_url
         render @template_engine, :logout
       else
diff --git a/lib/casserver/views/_login_form.erb b/lib/casserver/views/_login_form.erb
index ab40351e..6eb32371 100644
--- a/lib/casserver/views/_login_form.erb
+++ b/lib/casserver/views/_login_form.erb
@@ -1,42 +1,32 @@
-<%# coding: UTF-8 -%>
+<% if @log_out_of_services %>
+<!-- The purpose of this is to log out of all our dependent services, so a user
+     doesn't get trapped in a weird circle of logging out of Canvas, but still
+     being another user on BZ and thereby getting jerked around in a confusing
+     circle when she goes back to the home page.
+
+     Since it is a cross-domain, client side cookie, we had to implement this
+     using a helper method on the other side and an iframe on this side.
+-->
+  <iframe style="visibility: hidden; width: 1px; height: 1px;" src="//<%= @domain %>/users/clear_session_cookie"></iframe>
+<% end %>
 <form method="post" action="<%= @form_action || "login" %>" id="login-form"
       onsubmit="submitbutton = document.getElementById('login-submit'); submitbutton.value='<%= t.notice.please_wait %>'; submitbutton.disabled=true; return true;">
-  <table id="form-layout">
-    <tr>
-      <td id="username-label-container">
-        <label id="username-label" for="username">
-          <%= t.label.username %>
-        </label>
-      </td>
-      <td id="username-container">
-        <input type="text" id="username" name="username"
-               size="32" tabindex="1" accesskey="u" />
-      </td>
-    </tr>
-    <tr>
-      <td id="password-label-container">
-        <label id="password-label" for="password">
+        <div><label id="username-label" for="username">
+          Email
+        </label><br />
+        <input class="form-control" autofocus="autofocus" type="text" id="username" name="username"
+               size="32" tabindex="1" accesskey="u" /></div>
+        <div><label id="password-label" for="password">
           <%= t.label.password %>
-        </label>
-      </td>
-      <td id="password-container">
-        <input type="password" id="password" name="password"
-               size="32" tabindex="2" accesskey="p" autocomplete="off" />
-      </td>
-    </tr>
-    <tr>
-      <td />
-      <td id="submit-container">
-        <input type="hidden" id="lt" name="lt" value="<%= escape_html @lt %>" />
-        <input type="hidden" id="service" name="service" value="<%= escape_html @service %>" />
-        <input type="submit" class="button" accesskey="l" value="<%= t.button.login %>"
-               tabindex="4" id="login-submit" />
-      </td>
-    </tr>
-    <tr>
-      <td colspan="2" id="infoline">
+        </label><br />
+        <input class="form-control" type="password" id="password" name="password"
+               size="32" tabindex="2" accesskey="p" autocomplete="off" /></div>
+
+      <br />
+      <input type="hidden" id="lt" name="lt" value="<%= escape_html @lt %>" />
+      <input type="hidden" id="service" name="service" value="<%= escape_html @service %>" />
+      <div><input class="button-primary" name="commit" type="submit" value="Log in" /></div>
+      <div id="infoline">
         <%= @infoline %>
-      </td>
-    </tr>
-  </table>
+      </div>
 </form>
diff --git a/lib/casserver/views/layout.erb b/lib/casserver/views/layout.erb
index 8f83e974..e1cf7774 100644
--- a/lib/casserver/views/layout.erb
+++ b/lib/casserver/views/layout.erb
@@ -1,18 +1,155 @@
 <%# coding: UTF-8 -%>
 <?xml version="1.0" ?>
-<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
-                      "XHTML1-s.dtd" >
-<html xmlns="http://www.w3.org/TR/1999/REC-html-in-xml"
-      xml:lang="en" lang="en" >
-
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "XHTML1-s.dtd" >
+<html xmlns="http://www.w3.org/TR/1999/REC-html-in-xml" xml:lang="en" lang="en" >
   <head>
-    <title><%= escape_html @organization %><%= t.label.central_login_title %></title>
-    <link rel="stylesheet" type="text/css" href="<%= escape_html @uri_path %>/themes/cas.css" />
-    <link rel="stylesheet" type="text/css" href="<%= escape_html @uri_path %>/themes/<%= escape_html @theme %>/theme.css" />
-    <link rel="icon" type="image/png" href="<%= escape_html @uri_path %>/themes/<%= escape_html @theme %>/favicon.png" />
+    <title><%= escape_html @organization %> Login</title>
+    <link rel="favorite icon" type="image/png" href="/favicon.ico" />
+
+    <link rel='stylesheet' id='sass-css'  href='/bebraven/trimmed.css' type='text/css' media='all' />
+
+    <% if @google_analytics_account %>
+      <script>
+//<![CDATA[
+
+(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
+  (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),
+m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)
+})(window,document,'script','//www.google-analytics.com/analytics.js','ga');
+
+ga('create', '<%= @google_analytics_account %>', 'auto');
+ga('require', 'displayfeatures');
+ga('send', 'pageview');
+
+
+//]]>
+      </script>
+    <% end %>
+
   </head>
 
   <body onload="if (document.getElementById('username')) document.getElementById('username').focus()">
-    <%= yield %>
+
+    <div class="modal fade" id="notice-modal" tabindex="-1" role="dialog" aria-labelledby="notice-modal-label" aria-hidden="true">
+      <div class="modal-dialog modal-sm">
+        <div class="modal-content">
+          <div class="modal-header">
+            <button type="button" class="close" data-dismiss="modal" aria-hidden="true">&times;</button>
+            <h4 class="modal-title" id="notice-modal-label">Notice!</h4>
+          </div>
+          <div class="modal-body"></div>
+          <div class="modal-footer">
+            <button type="button" class="btn btn-default" data-dismiss="modal">Close</button>
+          </div>
+        </div>
+      </div>
+    </div>
+
+    <div class="public-container" style="min-height: 0px;">
+
+      <div class="upperheader_red">
+        <div class="container">
+          <h4 class="tophdr-content">Join Our Mailing List » <span style="margin-left:2px; margin-right:2px;">
+              <span class="social">
+                <a class="mail_icon" target="_blank" href="#mailinglist"></a>
+                <a class="facebook_icon" target="_blank" href="https://www.facebook.com/BeBraven"></a>
+                <a class="ig_icon" target="_blank" href="https://instagram.com/bebraven/"></a>
+                <a class="twitter_icon" target="_blank" href="https://twitter.com/bebraven"></a>
+              </span> </span>
+          </h4>
+        </div>
+      </div>
+
+      <div id="topheader">
+        <div id="blogo">
+          <a href="https://bebraven.org"><img src="data:image/png;base64,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"></a>
+        </div>
+      </div>
+
+      <main role="main">
+      <%= yield %>
+      </main>
+
+      <div id="footer_bottom" class="braven_section hide-on-iframe">
+        <div id="footer_menu">
+          <div id="nav_menu-2" class="footer_widget widget_nav_menu braven-widget-order-0 braven-widget-first">
+            <h3 class="footer-title">LEARN MORE</h3>
+            <div class="menu-footer-menu-col-one-container">
+              <ul id="menu-footer-menu-col-one" class="menu">
+                <li id="menu-item-107" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-107"><a href="https://bebraven.org/become-a-fellow/">Braven Fellows</a></li>
+                <li id="menu-item-108" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-108"><a href="https://bebraven.org/volunteer-as-a-coach/">Leadership Coaches</a></li>
+                <li id="menu-item-109" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-109"><a href="https://bebraven.org/partner-with-us/">Partners</a></li>
+              </ul>
+            </div>
+          </div>
+          <div id="nav_menu-3" class="footer_widget widget_nav_menu braven-widget-order-1">
+            <h3 class="footer-title">TAKE ACTION</h3><div class="menu-footer-menu-col-two-container">
+              <ul id="menu-footer-menu-col-two" class="menu">
+                <li id="menu-item-110" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-110"><a href="https://bebraven.org/apply-now/">Apply</a></li>
+                <li id="menu-item-642" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-642"><a href="https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&amp;hosted_button_id=VFUYARJB2QRXC" onclick="__gaTracker('send', 'event', 'outbound-widget', 'https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&amp;hosted_button_id=VFUYARJB2QRXC', 'Donate');" target="_blank">Donate</a></li>
+                <li id="menu-item-112" class="info_footer_link menu-item menu-item-type-custom menu-item-object-custom menu-item-112"><a href="mailto:info@bebraven.org">info@bebraven.org</a></li>
+              </ul>
+            </div>
+          </div>
+          <div id="nav_menu-4" class="footer_widget widget_nav_menu braven-widget-order-2">
+            <h3 class="footer-title">ABOUT US</h3>
+            <div class="menu-footer-menu-col-three-container">
+              <ul id="menu-footer-menu-col-three" class="menu">
+                <li id="menu-item-113" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-113"><a href="https://bebraven.org/about-us/">Who We Are</a></li>
+                <li id="menu-item-114" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-114"><a href="https://bebraven.org/our-team/">Our Team</a></li>
+                <li id="menu-item-115" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-115"><a href="https://bebraven.org/about-us/partners-supporters/">Partners &amp; Supporters</a></li>
+              </ul>
+            </div>
+          </div>
+          <div id="nav_menu-5" class="footer_widget widget_nav_menu braven-widget-order-3 braven-widget-last">
+            <h3 class="footer-title">CONNECT</h3>
+            <div class="menu-footer-menu-col-four-container">
+              <ul id="menu-footer-menu-col-four" class="menu">
+                <li id="menu-item-117" class="blog_fico menu-item menu-item-type-post_type menu-item-object-page menu-item-117"><a href="https://bebraven.org/blog/">Blog</a></li>
+                <li id="menu-item-118" class="fb_fico menu-item menu-item-type-custom menu-item-object-custom menu-item-118"><a href="https://www.facebook.com/bebraven" onclick="__gaTracker('send', 'event', 'outbound-widget', 'https://www.facebook.com/bebraven', 'Facebook');">Facebook</a></li>
+                <li id="menu-item-119" class="tw_fico menu-item menu-item-type-custom menu-item-object-custom menu-item-119"><a href="https://twitter.com/bebraven" onclick="__gaTracker('send', 'event', 'outbound-widget', 'https://twitter.com/bebraven', 'Twitter');">Twitter</a></li>
+              </ul>
+            </div>
+          </div>
+          <div class="clear"></div>
+
+        </div><!-- #secondary -->
+
+        <div class="braven-cc">
+          <div class="footer_copyright">			<div class="textwidget">Braven is a 501 (c)(3) • ©2015 • <a href="/privacy">Privacy Policy</a> • <a href="/terms-of-use">Terms of Use</a> • 
+              made with<span class="heart" style="display: inline;"> <img style="display: inline;" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAAbFBMVEUAAACqqqqsqqsJAQMSAwXBrbC/rbC/rbAcBAgjBQojBQouBg0lBQouBg01Bw/ksro3CA9vDx9/EiOBEiSEEiWLEyeWFSqpFy+tGDCyGTGpFy+2GTO2GTO0GTK2GTO7GjS7GjS5GjO7GjS7GjTxPgBtAAAAI3RSTlMAAAADCg0RFBUcHx8lJiYnK3GLkZuitcPP0tPi5efn5/T3994LyG8AAAB1SURBVBiVVYhXAoIwAMVS9lD23rT3v6NAUWl+3ksQwvJTTxx4qW8JAXEj1VYHQb0p2cQQTuqk76+ZQiplULGaYUWaQdKZoaMwQ8F7f/r+gvIZSsAZ/j44RyBZvr4kXGSj9jHjJmpPbyN+2Pk857b+QuO69/kAwwMXOKQtdyoAAAAASUVORK5CYII=" width="16" height="16" alt="❤" draggable="false" class="emoji"> </span>in America</div>
+          </div>	
+        </div><!-- .site-info -->
+      </div>
+    </div> <!-- .public-container -->
+
+
+    <!-- all this crap is here just for the  mobile hotdog menu -->
+
+    <script src="//ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js"></script>
+    <script src="//ajax.googleapis.com/ajax/libs/jqueryui/1/jquery-ui.min.js"></script>
+    <script type="text/javascript" src="//join.bebraven.org/bebraven/jquery.mmenu.min.all.js"></script>
+    <script>
+$(document).ready(function($) {
+  $('nav#menu').mmenu({
+    navbar: {
+      title: "Braven"
+    }
+  });
+
+  var API = $("#menu").data( "mmenu" );
+
+  $("#close-mobile-btn").click(function() {
+    API.close();
+  });
+});
+
+    </script>
+
+    <!-- done -->
+
+    <!-- yes, this always points to the stage version. it dynamically checks if we are staging. -->
+    <script id="stage-test-script" src="https://s3.amazonaws.com/canvas-stag-assets/bz_stage_test.js"></script>
+
   </body>
 </html>
diff --git a/lib/casserver/views/login.erb b/lib/casserver/views/login.erb
index e7963c12..d372c013 100644
--- a/lib/casserver/views/login.erb
+++ b/lib/casserver/views/login.erb
@@ -1,30 +1,37 @@
 <%# coding: UTF-8 -%>
-<table id="login-box">
-  <tr>
-    <td colspan="2">
-      <div id="headline-container">
-        <strong><%= escape_html @organization %></strong>
-        <%= t.label.central_login_title %>
-      </div>
-    </td>
-  </tr>
-
-  <% if @message %>
-  <tr>
-    <td colspan="2" id="messagebox-container">
-      <div class="messagebox <%= escape_html @message[:type] %>">
-        <%= escape_html @message[:message] %>
+
+<div class="plank plain-md" style="min-height: 700px; padding-top: 32px;">
+  <div class="section-container">
+    <section>
+      <div class="col-md-4 col-md-offset-4">
+        <h2>Platform Login</h2>
+        <% if @message %>
+           <p><%= escape_html @message[:message] %></p>
+        <% end %>
+
+        <% if request.cookies["login_flash"] %>
+          <p><%= escape_html request.cookies["login_flash"] %></p>
+          <%
+            response.set_cookie("login_flash", {
+              :value => '',
+              :expires => Time.now,
+              :domain => @cookie_domain
+            })
+          %>
+        <% end %>
+        <%= erb(:_login_form, :layout => false) %>
+
+       <br />
+        
+  <a href="//<%= @domain %>/signup/new">Sign up</a><br />
+
+  <a href="//<%= @domain %>/users/password/new">Forgot your password?</a><br />
+
+  <a href="//<%= @domain %>/users/confirmation/new">Didn&#39;t receive confirmation instructions?</a><br />
+
+
+
       </div>
-    </td>
-  </tr>
-  <% end %>
-
-  <tr>
-    <td id="logo-container">
-      <img id="logo" src="<%= escape_html @uri_path %>/themes/<%= @theme %>/logo.png" />
-    </td>
-    <td id="login-form-container">
-      <%= erb(:_login_form, :layout => false) %>
-    </td>
-  </tr>
-</table>
+    </section>
+  </div>
+</div>
diff --git a/locales/en.yml b/locales/en.yml
index 99eb6094..d1f4b785 100644
--- a/locales/en.yml
+++ b/locales/en.yml
@@ -1,6 +1,6 @@
 error:
   no_login_ticket: "Your login request did not include a login ticket. There may be a problem with the authentication system."
-  login_ticket_already_used: "The login ticket you provided has already been used up. Please try logging in again."
+  login_ticket_already_used: "The login screen needed to be refreshed. Please try logging in again."
   login_timeout: "You took too long to enter your credentials. Please try again."
   invalid_login_ticket: "The login ticket you provided is invalid. There may be a problem with the authentication system."
   login_ticket_needs_post_request: "To generate a login ticket, you must make a POST request."
diff --git a/public/bebraven/TradeGothicNo.20-CondBold_gdi.eot b/public/bebraven/TradeGothicNo.20-CondBold_gdi.eot
new file mode 100644
index 00000000..35926f60
Binary files /dev/null and b/public/bebraven/TradeGothicNo.20-CondBold_gdi.eot differ
diff --git a/public/bebraven/TradeGothicNo.20-CondBold_gdi.svg b/public/bebraven/TradeGothicNo.20-CondBold_gdi.svg
new file mode 100644
index 00000000..15d7ad38
--- /dev/null
+++ b/public/bebraven/TradeGothicNo.20-CondBold_gdi.svg
@@ -0,0 +1,281 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<!DOCTYPE svg  PUBLIC '-//W3C//DTD SVG 1.1//EN'  'http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd'>
+<svg xmlns="http://www.w3.org/2000/svg">
+<defs>
+<font id="TradeGothicNo.20-CondBold" horiz-adv-x="444">
+<font-face underline-position="-50" font-weight="700" descent="-200" panose-1="2 11 8 0 0 0 0 0 0 0" units-per-em="1000" unicode-range="U+0020-2122" font-stretch="expanded" bbox="-52 -236 1000 964" x-height="538" underline-thickness="50" font-family="TradeGothicNo.20" ascent="800" cap-height="722"/>
+<missing-glyph horiz-adv-x="1000"/>
+<glyph glyph-name=".notdef" horiz-adv-x="1000"/>
+<glyph glyph-name=".null" horiz-adv-x="0"/>
+<glyph glyph-name="nonmarkingreturn" horiz-adv-x="333"/>
+<glyph glyph-name="space" horiz-adv-x="222" unicode=" "/>
+<glyph glyph-name="exclam" horiz-adv-x="278" unicode="!" d="M198 0h-118v118h118v-118zM98 212l-22 510h126l-22 -510h-82z"/>
+<glyph glyph-name="quotedbl" horiz-adv-x="333" unicode='&quot;' d="M199 448v274h94v-274h-94zM40 448v274h94v-274h-94z"/>
+<glyph glyph-name="numbersign" d="M272 430h-80l-16 -138h80zM408 292v-78h-72l-24 -214h-90l25 214h-81l-24 -214h-91l25 214h-66v78h76l15 138h-66v78h76l25 214h89l-25 -214h81l25 214h89l-25 -214h64v-78h-72l-16 -138h62z" unicode="#"/>
+<glyph glyph-name="dollar" d="M252 293v-197q56 22 56 93q0 34 -14 56t-42 48zM192 450v174q-22 -8 -36 -28t-14 -46q0 -31 12 -54t38 -46zM192 722v88h60v-88q42 -8 78 -32t61 -59l-76 -65q-15 24 -29 38t-34 20v-207q38 -24 66 -45t49 -47q23 -27 35 -59t12 -72q0 -78 -43 -132t-119 -62v-116h-60 v116q-49 5 -91 36t-71 77l83 63q11 -28 31 -50t48 -30v235q-68 42 -110 91t-42 115q0 72 40 124t112 61z" unicode="$"/>
+<glyph glyph-name="percent" horiz-adv-x="778" unicode="%" d="M557 732h75l-409 -742h-75zM400 164q0 34 12 64t36 52q22 22 52 36q30 12 64 12t64 -12t52 -36q22 -22 36 -52q12 -30 12 -64t-12 -64t-36 -52q-22 -24 -52 -36t-64 -12t-64 12t-52 36q-24 22 -36 52t-12 64zM480 164q0 -34 25 -59t59 -25t59 25t25 59t-25 59t-59 25 t-59 -25t-25 -59zM130 558q0 -34 25 -59t59 -25t59 25t25 59t-25 59t-59 25t-59 -25t-25 -59zM50 558q0 34 12 64t36 52q22 22 52 36q30 12 64 12t64 -12t52 -36q22 -22 36 -52q12 -30 12 -64t-12 -64t-36 -52q-22 -24 -52 -36t-64 -12t-64 12t-52 36q-24 22 -36 52t-12 64z "/>
+<glyph glyph-name="ampersand" horiz-adv-x="556" unicode="&amp;" d="M166 175q0 -33 20 -55t53 -22q19 0 31 4t26 17q-66 79 -99 145q-19 -26 -25 -44t-6 -45zM404 350l102 -27q-8 -38 -22 -75t-36 -90l-10 -24q31 -28 69 -34v-110q-82 1 -140 55q-31 -29 -63 -42t-79 -13q-77 0 -125 47t-48 122q0 53 27 106t68 98q-25 55 -41 106t-16 93 q0 76 41 123t116 47q67 0 107 -41t40 -109q0 -55 -28 -100t-83 -105l-13 -14q39 -82 90 -147q34 88 44 134zM192 589q0 -33 10 -67t24 -72q28 38 44 68t16 64q0 42 -11 60t-34 18q-49 0 -49 -71z"/>
+<glyph glyph-name="quotesingle" horiz-adv-x="222" unicode="&apos;" d="M64 448v274h94v-274h-94z"/>
+<glyph glyph-name="parenleft" horiz-adv-x="278" unicode="(" d="M150 732h96q-58 -88 -88 -193t-30 -216t30 -216t88 -193h-96q-54 88 -86 194t-32 215t32 215t86 194z"/>
+<glyph glyph-name="parenright" horiz-adv-x="278" unicode=")" d="M32 732h96q56 -88 87 -194t31 -215t-31 -215t-87 -194h-96q58 88 88 193t30 216t-30 216t-88 193z"/>
+<glyph glyph-name="asterisk" d="M372 645l30 -89q-37 -1 -107 -11q-37 -5 -44 -6q64 -69 111 -107l-79 -55q-13 37 -47 109q-9 21 -14 31q-5 -10 -14 -31q-34 -72 -47 -109l-79 55q47 38 111 107q-7 1 -44 6q-70 10 -107 11l30 89q60 -36 127 -67q-5 64 -24 144h94q-19 -80 -24 -144q67 31 127 67z" unicode="*"/>
+<glyph glyph-name="plus" horiz-adv-x="600" unicode="+" d="M251 302v204h98v-204h204v-98h-204v-204h-98v204h-204v98h204z"/>
+<glyph glyph-name="comma" horiz-adv-x="222" unicode="," d="M170 118v-118l-69 -124h-53l49 124h-45v118h118z"/>
+<glyph glyph-name="hyphen" horiz-adv-x="333" unicode="-" d="M289 223h-245v92h245v-92z"/>
+<glyph glyph-name="period" horiz-adv-x="222" unicode="." d="M170 0h-118v118h118v-118z"/>
+<glyph glyph-name="slash" horiz-adv-x="278" unicode="/" d="M-21 -10l222 742h98l-222 -742h-98z"/>
+<glyph glyph-name="zero" d="M46 188v346q0 102 42 150t134 48t134 -48t42 -150v-346q0 -102 -42 -150t-134 -48t-134 48t-42 150zM280 157v408q0 69 -58 69t-58 -69v-408q0 -69 58 -69t58 69z" unicode="0"/>
+<glyph glyph-name="one" d="M177 0v572h-98v67q94 48 147 93h63v-732h-112z" unicode="1"/>
+<glyph glyph-name="two" d="M389 0h-345v97q136 199 187 291t51 164q0 42 -14 62t-42 20t-44 -20t-16 -55v-49h-118v34q0 82 50 135t134 53q74 0 121 -48t47 -112q0 -46 -9 -86t-33 -90t-70 -121q-45 -70 -118 -173h219v-102z" unicode="2"/>
+<glyph glyph-name="three" d="M46 209h112v-49q0 -72 56 -72q28 0 44 21t15 64v55q0 58 -24 80t-82 22v98q57 0 79 24t22 86q0 52 -12 74t-38 22q-28 0 -42 -16t-14 -58v-30h-112v34q0 76 45 122t124 46q77 0 119 -54t42 -131q0 -67 -16 -104t-62 -62q53 -27 71 -65t18 -114q0 -108 -44 -160t-136 -52 q-81 0 -123 43t-42 133v43z" unicode="3"/>
+<glyph glyph-name="four" d="M232 0v174h-216v92l210 456h120v-456h66v-92h-66v-174h-114zM111 266h123v282h-2z" unicode="4"/>
+<glyph glyph-name="five" d="M50 209h112v-58q0 -29 15 -46t40 -17q29 0 45 20t16 68v164q0 34 -14 50t-38 16q-26 0 -42 -14t-25 -41h-96q1 26 2 62q3 89 5 153t2 156h301l-4 -102h-195l-7 -156l2 -2q23 26 43 34t52 8q68 0 100 -48t32 -142v-100q0 -116 -40 -170t-128 -54q-82 0 -130 40t-48 124v55 z" unicode="5"/>
+<glyph glyph-name="six" d="M164 313v-156q0 -69 58 -69t58 69v120q0 33 -14 51t-38 18q-14 0 -30 -10t-34 -23zM383 528h-108v37q0 69 -53 69q-58 0 -58 -69v-169q27 28 47 38t55 10q60 0 96 -36t36 -112v-86q0 -116 -42 -168t-134 -52t-134 48t-42 150v346q0 102 42 150t134 48q73 0 117 -45 t44 -115v-44z" unicode="6"/>
+<glyph glyph-name="seven" d="M263 620h-207v102h326v-70l-147 -652h-117z" unicode="7"/>
+<glyph glyph-name="eight" d="M222 436q28 0 41 24t13 75q0 53 -13 76t-41 23t-41 -23t-13 -76q0 -51 13 -75t41 -24zM222 88q36 0 50 30t14 90t-14 90t-50 30q-34 0 -49 -30t-15 -90t15 -90t49 -30zM46 200q0 71 16 114t59 71q-33 23 -49 61t-16 83q0 103 44 153t122 50t122 -50t44 -153 q0 -45 -16 -83t-49 -61q43 -28 59 -71t16 -114q0 -102 -44 -156t-132 -54t-132 54t-44 156z" unicode="8"/>
+<glyph glyph-name="nine" d="M280 409v156q0 69 -58 69t-58 -69v-120q0 -33 14 -51t38 -18q15 0 31 10t33 23zM61 194h108v-37q0 -69 53 -69q58 0 58 69v169q-27 -28 -47 -38t-55 -10q-58 0 -95 36t-37 112v86q0 116 42 168t134 52t134 -48t42 -150v-346q0 -102 -42 -150t-134 -48q-73 0 -117 46 t-44 114v44z" unicode="9"/>
+<glyph glyph-name="colon" horiz-adv-x="222" unicode=":" d="M170 278h-118v118h118v-118zM170 0h-118v118h118v-118z"/>
+<glyph glyph-name="semicolon" horiz-adv-x="222" unicode=";" d="M170 278h-118v118h118v-118zM170 118v-118l-69 -124h-53l49 124h-45v118h118z"/>
+<glyph glyph-name="less" horiz-adv-x="600" unicode="&lt;" d="M553 104v-104l-506 211v84l506 211v-104l-365 -149z"/>
+<glyph glyph-name="equal" horiz-adv-x="600" unicode="=" d="M553 198v-98h-506v98h506zM553 406v-98h-506v98h506z"/>
+<glyph glyph-name="greater" horiz-adv-x="600" unicode="&gt;" d="M47 0v104l365 149l-365 149v104l506 -211v-84z"/>
+<glyph glyph-name="question" horiz-adv-x="389" unicode="?" d="M242 0h-118v118h118v-118zM233 212h-96v84q0 48 14 88t38 85q4 7 11 20q20 37 30 61t11 45q0 19 -12 32t-30 13q-27 0 -45 -22t-26 -54l-96 36q24 68 68 100t113 32q58 0 101 -38t43 -96q0 -46 -14 -77t-42 -70l-6 -8q-30 -41 -46 -79t-16 -98v-54z"/>
+<glyph glyph-name="at" horiz-adv-x="800" unicode="@" d="M523 496l16 52h81l-63 -257q0 -1 -1 -4q-6 -23 -6 -35q0 -13 4 -20t12 -7q22 -1 42 13t37 40t27 58q10 33 10 72q0 116 -78 183q-36 31 -84 47t-105 16q-63 0 -116 -22t-91 -62t-58 -94t-20 -117t22 -117t62 -92q40 -40 94 -61t119 -21q61 0 117 22t96 61h83 q-51 -77 -130 -119t-172 -42q-79 0 -149 26t-122 76t-81 118t-29 151q0 79 29 147t81 119q52 49 120 77t146 28q67 0 129 -22t111 -62q48 -40 76 -96t28 -123q0 -72 -26 -127t-67 -90q-40 -35 -82 -52t-72 -17q-24 0 -40 14t-17 40l-2 1q-22 -24 -50 -40t-58 -15 q-32 0 -60 13t-50 36q-22 24 -33 54q-12 30 -12 63q-1 47 15 93t44 81q28 36 69 57q40 21 87 21q77 0 117 -65zM369 233q26 -1 49 13q24 14 40 36t25 50q9 27 9 52q0 37 -22 62t-55 25q-26 1 -49 -13t-40 -36t-26 -48t-9 -52q-1 -38 21 -64t57 -25z"/>
+<glyph glyph-name="A" d="M154 160l-22 -160h-120l133 722h154l133 -722h-120l-22 160h-136zM221 578l-49 -310h100l-49 310h-2z" unicode="A"/>
+<glyph glyph-name="B" horiz-adv-x="500" unicode="B" d="M60 0v722h184q98 0 145 -48t47 -143q0 -50 -22 -92t-64 -59q48 -22 74 -63t26 -108q0 -97 -47 -153t-147 -56h-196zM184 620v-194h45q37 0 60 24t23 68q0 102 -81 102h-47zM184 324v-222h52q48 0 69 28t21 83q0 57 -24 84t-78 27h-40z"/>
+<glyph glyph-name="C" horiz-adv-x="500" unicode="C" d="M434 481h-124v56q0 43 -17 65t-43 22q-36 0 -51 -19t-15 -61v-366q0 -42 15 -61t51 -19q32 0 46 18t14 55v87h124v-83q0 -81 -48 -133t-136 -52q-94 0 -142 52t-48 133v372q0 81 48 133t142 52q88 0 136 -56t48 -142v-53z"/>
+<glyph glyph-name="D" horiz-adv-x="500" unicode="D" d="M60 0v722h184q96 0 146 -54t50 -164v-286q0 -110 -50 -164t-146 -54h-184zM184 620v-518h43q49 0 69 22t20 79v316q0 57 -20 79t-69 22h-43z"/>
+<glyph glyph-name="E" d="M406 0h-346v722h332v-108h-208v-186h160v-108h-160v-212h222v-108z" unicode="E"/>
+<glyph glyph-name="F" d="M184 0h-124v722h346v-108h-222v-186h166v-108h-166v-320z" unicode="F"/>
+<glyph glyph-name="G" horiz-adv-x="500" unicode="G" d="M231 268v98h203v-366h-60l-23 54q-29 -36 -56 -50t-69 -14q-74 0 -120 50t-46 135v372q0 81 47 133t135 52q90 0 138 -56t48 -142v-46h-118q0 78 -16 107t-55 29q-25 0 -40 -18t-15 -61v-371q0 -36 14 -56t44 -20q36 0 52 23t16 77v70h-79z"/>
+<glyph glyph-name="H" horiz-adv-x="500" unicode="H" d="M184 0h-124v722h124v-294h132v294h124v-722h-124v320h-132v-320z"/>
+<glyph glyph-name="I" horiz-adv-x="278" unicode="I" d="M201 0h-124v722h124v-722z"/>
+<glyph glyph-name="J" horiz-adv-x="278" unicode="J" d="M3 -10v108h26q35 0 50 14t15 46v564h124v-578q0 -74 -38 -114t-136 -40h-41z"/>
+<glyph glyph-name="K" d="M178 0h-124v722h124v-267h2l130 267h124l-134 -269l151 -453h-126l-101 336h-2l-44 -80v-256z" unicode="K"/>
+<glyph glyph-name="L" horiz-adv-x="389" unicode="L" d="M373 0h-319v722h124v-614h195v-108z"/>
+<glyph glyph-name="M" horiz-adv-x="611" unicode="M" d="M394 722h163v-722h-108v564h-2l-112 -564h-60l-112 564h-2v-564h-108v722h163l88 -422h2z"/>
+<glyph glyph-name="N" horiz-adv-x="500" unicode="N" d="M172 0h-112v722h115l151 -413h2v413h112v-722h-108l-158 451h-2v-451z"/>
+<glyph glyph-name="O" horiz-adv-x="500" unicode="O" d="M184 544v-366q0 -42 15 -61t51 -19q38 0 52 19t14 61v366q0 42 -14 61t-52 19q-36 0 -51 -19t-15 -61zM60 175v372q0 81 48 133t142 52t142 -52t48 -133v-372q0 -81 -48 -133t-142 -52t-142 52t-48 133z"/>
+<glyph glyph-name="P" horiz-adv-x="500" unicode="P" d="M184 0h-124v722h178q116 0 170 -50t54 -163t-54 -163t-170 -50h-54v-296zM184 620v-222h48q62 0 84 24t22 87t-22 87t-84 24h-48z"/>
+<glyph glyph-name="Q" horiz-adv-x="500" unicode="Q" d="M259 148v110q1 -1 2 -1q15 -8 27 -17t28 -26v330q0 42 -14 61t-52 19q-36 0 -51 -19t-15 -61v-366q0 -42 15 -61t51 -19q28 0 42 11q-9 15 -16 23t-15 15q-1 1 -2 1zM477 54v-108q-39 0 -67 13t-59 54q-41 -23 -101 -23q-94 0 -142 52t-48 133v372q0 81 48 133t142 52 t142 -52t48 -133v-372q0 -52 -21 -93q19 -16 32 -22t26 -6z"/>
+<glyph glyph-name="R" horiz-adv-x="500" unicode="R" d="M184 296v-296h-124v722h174q106 0 158 -50t52 -163q0 -79 -24 -122t-63 -60l105 -327h-126l-88 299q-12 -1 -30 -2t-34 -1zM184 620v-222h44q52 0 72 24t20 87t-20 87t-72 24h-44z"/>
+<glyph glyph-name="S" d="M404 557l-118 -13q-3 44 -22 62t-44 18q-62 0 -62 -71q0 -37 26 -67t78 -76q36 -30 58 -52t44 -49t34 -61t12 -73q0 -87 -54 -136t-142 -49q-82 0 -132 58t-54 142l118 17q4 -53 24 -81t50 -28q32 0 52 17t20 49q0 44 -26 76t-83 79q-35 30 -57 51q-22 22 -42 48t-32 60 t-12 74q0 86 50 133t142 47q74 0 119 -48t53 -127z" unicode="S"/>
+<glyph glyph-name="T" horiz-adv-x="389" unicode="T" d="M132 0v614h-120v108h364v-108h-120v-614h-124z"/>
+<glyph glyph-name="U" horiz-adv-x="500" unicode="U" d="M60 182v540h124v-545q0 -79 66 -79t66 79v545h124v-540q0 -92 -50 -142t-140 -50t-140 50t-50 142z"/>
+<glyph glyph-name="V" d="M223 221l90 501h122l-151 -722h-124l-151 722h122l90 -501h2z" unicode="V"/>
+<glyph glyph-name="W" horiz-adv-x="667" unicode="W" d="M194 262l81 460h102l84 -460h2l69 460h116l-127 -722h-104l-90 477h-2l-84 -477h-104l-137 722h116l76 -460h2z"/>
+<glyph glyph-name="X" d="M14 0l142 378l-132 344h122l76 -229h2l69 229h122l-125 -344l140 -378h-122l-84 263h-2l-86 -263h-122z" unicode="X"/>
+<glyph glyph-name="Y" d="M284 300v-300h-124v300l-150 422h126l87 -275h2l83 275h126z" unicode="Y"/>
+<glyph glyph-name="Z" d="M275 614h-203v108h328v-118l-228 -496h228v-108h-356v118z" unicode="Z"/>
+<glyph glyph-name="bracketleft" horiz-adv-x="278" unicode="[" d="M250 722v-48h-118v-702h118v-48h-214v798h214z"/>
+<glyph glyph-name="backslash" horiz-adv-x="278" unicode="\" d="M77 732l222 -742h-98l-222 742h98z"/>
+<glyph glyph-name="bracketright" horiz-adv-x="278" unicode="]" d="M28 674v48h214v-798h-214v48h118v702h-118z"/>
+<glyph glyph-name="asciicircum" horiz-adv-x="600" unicode="^" d="M163 302h-107l190 420h108l190 -420h-109l-136 302z"/>
+<glyph glyph-name="underscore" horiz-adv-x="500" unicode="_" d="M500 -125h-500v50h500v-50z"/>
+<glyph glyph-name="grave" horiz-adv-x="222" unicode="`" d="M99 602l-131 144h135l79 -144h-83z"/>
+<glyph glyph-name="a" d="M273 132v141q-75 -41 -101 -73t-26 -69q0 -49 52 -49q22 0 40 14t35 36zM154 380h-112q4 80 52 124t128 44q79 0 121 -36t42 -110v-345q0 -15 6 -52l1 -5h-107q0 8 -3 23q-2 12 -3 19q-34 -28 -63 -40t-68 -12q-54 0 -84 34t-30 87q0 85 57 141t182 103v32q0 69 -55 69 q-36 0 -49 -19t-15 -57z" unicode="a"/>
+<glyph glyph-name="b" d="M166 428v-318q39 -28 64 -28q26 0 40 19t14 68v200q0 49 -14 68t-40 19q-25 0 -64 -28zM160 0h-106v722h112v-230l4 3q36 29 58 41t54 12q54 0 84 -38t30 -112v-258q0 -74 -30 -112t-84 -38q-40 0 -66 14t-54 52h-2v-56z" unicode="b"/>
+<glyph glyph-name="c" d="M396 354h-112v14q0 46 -16 67t-46 21t-46 -21t-16 -67v-198q0 -46 16 -67t46 -21t46 21t16 67v34h112v-14q0 -94 -42 -147t-132 -53t-132 53t-42 147v158q0 94 42 147t132 53t131 -51t43 -143z" unicode="c"/>
+<glyph glyph-name="d" d="M278 110v318q-38 28 -64 28t-40 -19t-14 -68v-200q0 -49 14 -68t40 -19t64 28zM390 0h-106v56h-2q-28 -38 -54 -52t-66 -14q-54 0 -84 38t-30 112v258q0 74 30 112t84 38q33 0 54 -12t58 -41l4 -3v230h112v-722z" unicode="d"/>
+<glyph glyph-name="e" d="M396 348v-100h-236v-78q0 -46 16 -67t46 -21t46 21t16 67v12h112q-2 -92 -43 -142t-131 -50t-132 53t-42 147v158q0 94 42 147t132 53t132 -53t42 -147zM160 340h124v28q0 46 -16 67t-46 21t-46 -21t-16 -67v-28z" unicode="e"/>
+<glyph glyph-name="f" horiz-adv-x="278" unicode="f" d="M76 0v446h-66v92h66v67q0 63 32 95t93 32h56v-92h-32q-21 0 -29 -8t-8 -28v-66h64v-92h-64v-446h-112z"/>
+<glyph glyph-name="g" d="M198 230q32 0 44 22t12 91t-12 91t-44 22q-28 0 -42 -24t-14 -89t14 -89t42 -24zM231 -90q55 0 75 9t20 31t-20 31t-75 9t-75 -9t-20 -31t20 -31t75 -9zM426 548v-93q-6 1 -18 1q-33 0 -54 -17q6 -19 9 -43t3 -42q0 -120 -40 -168t-130 -48h-36q-22 -5 -22 -25 q0 -19 22 -24t72 -7q44 -2 74 -5t58 -15t45 -37t17 -67q0 -68 -59 -98t-171 -30q-86 0 -132 22t-46 64q0 30 22 54t51 30v2q-23 10 -37 26t-14 42q0 24 20 48t48 39q-23 16 -36 30t-21 34q-7 21 -11 51t-4 78q0 110 40 154t134 44q75 0 124 -58q24 34 41 46t51 12z" unicode="g"/>
+<glyph glyph-name="h" d="M166 0h-112v722h112v-234q4 3 6 5q34 31 58 43t66 12q44 0 69 -30t25 -83v-435h-112v417q0 39 -40 39q-16 0 -32 -8t-40 -26v-422z" unicode="h"/>
+<glyph glyph-name="i" horiz-adv-x="222" unicode="i" d="M167 620h-112v102h112v-102zM167 0h-112v538h112v-538z"/>
+<glyph glyph-name="j" horiz-adv-x="222" unicode="j" d="M173 620h-112v102h112v-102zM0 -170v102h19q22 0 32 12t10 30v563h112v-568q0 -75 -36 -107t-94 -32h-43z"/>
+<glyph glyph-name="k" d="M411 538l-117 -170l130 -368h-113l-90 267h-2l-53 -79v-188h-112v722h112v-374h2l123 190h120z" unicode="k"/>
+<glyph glyph-name="l" horiz-adv-x="222" unicode="l" d="M167 0h-112v722h112v-722z"/>
+<glyph glyph-name="m" horiz-adv-x="667" unicode="m" d="M389 0h-112v417q-1 19 -11 29t-28 10q-16 0 -32 -8t-40 -26v-422h-112v538h106v-54q7 6 10 8q36 32 58 44t56 12q40 0 59 -14t39 -50q39 38 66 51t59 13q53 0 79 -30t26 -83v-435h-112v417q0 19 -11 29t-29 10q-16 0 -32 -8t-39 -26v-422z"/>
+<glyph glyph-name="n" d="M166 0h-112v538h106v-54l8 7q38 33 62 45t66 12q44 0 69 -30t25 -83v-435h-112v417q0 39 -40 39q-16 0 -32 -8t-40 -26v-422z" unicode="n"/>
+<glyph glyph-name="o" d="M48 190v158q0 94 42 147t132 53t132 -53t42 -147v-158q0 -94 -42 -147t-132 -53t-132 53t-42 147zM284 170v198q0 46 -16 67t-46 21t-46 -21t-16 -67v-198q0 -46 16 -67t46 -21t46 21t16 67z" unicode="o"/>
+<glyph glyph-name="p" d="M166 428v-318q39 -28 64 -28q26 0 40 19t14 68v200q0 49 -14 68t-40 19q-25 0 -64 -28zM54 538h106v-56h2q28 38 54 52t66 14q54 0 84 -38t30 -112v-258q0 -74 -30 -112t-84 -38q-33 0 -54 12t-58 41l-4 3v-216h-112v708z" unicode="p"/>
+<glyph glyph-name="q" d="M278 110v318q-38 28 -64 28t-40 -19t-14 -68v-200q0 -49 14 -68t40 -19t64 28zM284 538h106v-708h-112v216l-4 -3q-36 -29 -58 -41t-54 -12q-54 0 -84 38t-30 112v258q0 74 30 112t84 38q40 0 66 -14t54 -52h2v56z" unicode="q"/>
+<glyph glyph-name="r" horiz-adv-x="333" unicode="r" d="M166 0h-112v538h107v-63h2q19 35 53 54t74 19h23v-117l-7 2q-18 5 -32 7t-33 2q-31 0 -53 -19t-22 -53v-370z"/>
+<glyph glyph-name="s" horiz-adv-x="389" unicode="s" d="M353 405l-95 -16q-12 67 -64 67q-22 0 -36 -11t-13 -32q-1 -23 19 -43t61 -49q29 -21 49 -37t40 -39q19 -21 30 -49t11 -61q0 -69 -43 -107t-114 -38q-72 0 -115 39t-56 111l98 27q7 -41 23 -63t51 -22q22 0 36 12t14 35q0 28 -21 50t-66 54q-30 21 -49 37t-36 36t-27 44 q-10 25 -11 54q0 64 43 104t107 40q63 0 107 -39t57 -104z"/>
+<glyph glyph-name="t" horiz-adv-x="278" unicode="t" d="M72 446h-62v92h62v145h112v-145h75v-92h-75v-310q0 -44 38 -44h37v-96l-24 -4t-32 -2q-63 0 -97 30t-34 91v335z"/>
+<glyph glyph-name="u" d="M278 538h112v-538h-106v54l-8 -7q-38 -33 -62 -45t-66 -12q-44 0 -69 30t-25 83v435h112v-417q0 -39 40 -39q16 0 32 8t40 26v422z" unicode="u"/>
+<glyph glyph-name="v" horiz-adv-x="389" unicode="v" d="M195 178l70 360h114l-130 -538h-109l-130 538h114l69 -360h2z"/>
+<glyph glyph-name="w" horiz-adv-x="556" unicode="w" d="M165 202l71 335h83l60 -335h2l61 336h108l-124 -538h-90l-61 340h-2l-73 -340h-90l-104 538h108l49 -336h2z"/>
+<glyph glyph-name="x" horiz-adv-x="389" unicode="x" d="M12 0l120 285l-111 253h116l57 -150l60 150h116l-116 -251l122 -287h-116l-65 182h-2l-65 -182h-116z"/>
+<glyph glyph-name="y" horiz-adv-x="389" unicode="y" d="M198 194l68 344h113l-141 -578q-18 -72 -53 -100t-100 -29h-47v92h27q41 0 57 21t17 66q0 26 -12 71l-117 457h114l72 -344h2z"/>
+<glyph glyph-name="z" horiz-adv-x="389" unicode="z" d="M235 446h-191v92h315v-92l-209 -354h209v-92h-329v92z"/>
+<glyph glyph-name="braceleft" horiz-adv-x="278" unicode="{" d="M0 296v58q24 0 40 20t16 60v202q0 50 23 73t81 23h110v-48h-82q-20 0 -28 -13t-8 -37v-194q0 -28 -8 -50t-20 -36t-25 -20q-13 -7 -23 -8v-3q12 -3 24 -9t24 -20t20 -35q8 -22 8 -53v-194q0 -24 8 -37t28 -13h82v-48h-110q-58 0 -81 23t-23 73v206q0 40 -16 60t-40 20z "/>
+<glyph glyph-name="bar" horiz-adv-x="222" unicode="|" d="M62 -10v742h98v-742h-98z"/>
+<glyph glyph-name="braceright" horiz-adv-x="278" unicode="}" d="M278 350v-58q-24 0 -40 -20t-16 -60v-202q0 -50 -23 -73t-81 -23h-110v48h82q20 0 28 13t8 37v194q0 28 8 50t20 36t25 20q13 7 23 8v3q-12 3 -24 9t-24 20t-20 35q-8 22 -8 53v194q0 24 -8 37t-28 13h-82v48h110q58 0 81 -23t23 -73v-206q0 -40 16 -60t40 -20z"/>
+<glyph glyph-name="asciitilde" horiz-adv-x="600" unicode="~" d="M495 335l44 -86q-5 -4 -19 -18q-32 -30 -56 -45t-58 -15q-25 1 -49 9t-53 24q-24 14 -54 22t-61 9q-29 1 -49 -17t-35 -47l-44 86l4 4q31 35 59 55t70 19q23 -1 50 -9t61 -23q5 -2 16 -7q29 -13 47 -19t39 -6q27 1 46 17t42 47z"/>
+<glyph glyph-name="exclamdown" horiz-adv-x="278" unicode="¡" d="M80 538h118v-118h-118v118zM180 326l22 -510h-126l22 510h82z"/>
+<glyph glyph-name="cent" d="M401 364h-104v14q0 38 -15 59l-91 -337q12 -8 32 -8q33 0 52 22t19 66v34h112v-14q0 -94 -43 -147t-140 -53q-26 0 -43 4l-33 -120h-75l40 145q-38 23 -56 67t-18 104v158q0 94 44 147t141 53q12 0 32 -2l35 128h74l-41 -150q41 -22 59 -66t19 -104zM158 148l81 317 q-5 1 -16 1q-33 0 -53 -22t-20 -66v-198q0 -9 4 -25q1 -4 2 -7h2z" unicode="¢"/>
+<glyph glyph-name="sterling" d="M35 -10v107q45 15 61 63t16 159h-77v84h63q-14 61 -21 99t-7 65q0 79 41 122t124 43q81 0 121 -50t40 -152h-102q-2 66 -16 88t-46 22q-50 0 -50 -64q0 -26 4 -50t13 -62q8 -40 12 -61h99v-84h-90q-2 -80 -8 -123t-27 -80q34 -24 70 -24q31 0 41 28t10 79h100v-59 q0 -70 -34 -110t-99 -40q-36 0 -68 13t-60 35q-31 -21 -57 -33t-53 -15z" unicode="£"/>
+<glyph glyph-name="currency" d="M110 361q0 -49 32 -83t80 -34t80 34t32 83t-32 83t-80 34t-80 -34t-32 -83zM436 199l-50 -53l-48 48q-25 -16 -55 -26t-61 -10q-65 0 -117 36l-47 -48l-50 53l47 46q-37 52 -37 116q0 65 37 116l-47 46l50 53l47 -48q52 36 117 36q31 0 61 -10t55 -26l48 48l50 -53 l-47 -46q37 -51 37 -116q0 -64 -37 -116z" unicode="¤"/>
+<glyph glyph-name="yen" d="M418 468v-84h-121l-27 -80h148v-84h-148v-220h-96v220h-148v84h148l-27 80h-121v84h87l-91 254h100l101 -299h2l97 299h100l-91 -254h87z" unicode="¥"/>
+<glyph glyph-name="brokenbar" horiz-adv-x="222" unicode="¦" d="M160 732v-306h-98v306h98zM160 296v-306h-98v306h98z"/>
+<glyph glyph-name="section" horiz-adv-x="500" unicode="§" d="M144 399q0 -11 20 -39t49 -60t57 -52q28 -22 40 -22q18 0 32 13t14 31q0 10 -20 38t-48 59q-30 32 -58 53t-42 21q-20 -1 -32 -13t-12 -29zM402 652l-69 -50l-6 7q-19 21 -35 33t-35 12q-52 0 -52 -46q1 -26 25 -54t76 -73q70 -61 106 -106t36 -95t-29 -83t-79 -35 q26 -25 38 -49t12 -59q0 -58 -37 -96t-95 -38q-51 0 -89 20t-81 61l73 57q14 -28 33 -44t46 -16q26 0 42 12t16 38t-25 56t-79 81q-70 65 -106 111t-36 95t30 79t81 35q-50 38 -50 105q0 54 37 88t107 34q44 0 82 -22t63 -58z"/>
+<glyph glyph-name="dieresis" horiz-adv-x="222" unicode="¨" d="M-22 722h108v-108h-108v108zM244 614h-108v108h108v-108z"/>
+<glyph glyph-name="copyright" horiz-adv-x="800" unicode="©" d="M514 299h81q-13 -73 -63 -115t-118 -42q-46 0 -86 17t-68 47t-43 70t-15 87q0 97 57 159t153 62q71 0 120 -40t60 -114h-78q-6 36 -34 56t-68 20q-56 0 -86 -38t-30 -103q0 -61 33 -103t85 -42q42 0 69 21t31 58zM682 361q0 63 -22 117t-60 94t-90 60q-52 22 -110 22 q-59 0 -110 -22t-90 -60q-38 -40 -60 -94t-22 -117t22 -117t60 -94t90 -60q52 -22 110 -22t110 22t90 60q38 40 60 94t22 117zM400 -10q-75 0 -144 26q-68 26 -122 76t-84 118q-30 69 -30 151t30 151q30 68 84 118q53 50 122 76t144 26t144 -26t122 -76q54 -49 84 -118 t30 -151t-30 -151q-30 -68 -84 -118t-122 -76q-69 -26 -144 -26z"/>
+<glyph glyph-name="ordfeminine" horiz-adv-x="266" unicode="ª" d="M164 486v73q-44 -23 -58 -39t-14 -38q0 -26 29 -26q13 0 25 8t18 22zM92 631h-78q4 49 36 75t86 26q106 0 106 -88v-208q0 -8 4 -27q0 -1 1 -7h-70q0 4 -2 11q-2 6 -2 10q-19 -15 -39 -21t-46 -6q-36 0 -55 20t-19 53q0 51 36 85t114 62v19q0 37 -34 37q-20 0 -28 -10 t-10 -31z"/>
+<glyph glyph-name="guillemotleft" horiz-adv-x="500" unicode="«" d="M327 269l114 -154h-96l-115 155l115 153h99zM160 269l114 -154h-96l-115 155l115 153h99z"/>
+<glyph glyph-name="logicalnot" horiz-adv-x="600" unicode="¬" d="M455 99v209h-408v98h506v-307h-98z"/>
+<glyph glyph-name="minus" horiz-adv-x="600" unicode="­" d="M553 204h-506v98h506v-98z"/>
+<glyph glyph-name="minus" horiz-adv-x="600" unicode="−" d="M553 204h-506v98h506v-98z"/>
+<glyph glyph-name="registered" horiz-adv-x="800" unicode="®" d="M682 361q0 63 -22 117t-60 94t-90 60q-52 22 -110 22q-59 0 -110 -22t-90 -60q-38 -40 -60 -94t-22 -117t22 -117t60 -94t90 -60q52 -22 110 -22t110 22t90 60q38 40 60 94t22 117zM400 -10q-75 0 -144 26q-68 26 -122 76t-84 118q-30 69 -30 151t30 151q30 68 84 118 q53 50 122 76t144 26t144 -26t122 -76q54 -49 84 -118t30 -151t-30 -151q-30 -68 -84 -118t-122 -76q-69 -26 -144 -26zM334 505v-110h71q45 0 63 14t18 44q0 29 -20 41t-65 11h-67zM334 331v-177h-82v415h157q81 -1 121 -29t40 -94q0 -53 -28 -80t-72 -31l100 -181h-91 l-93 177h-52z"/>
+<glyph glyph-name="macron" horiz-adv-x="222" unicode="¯" d="M-36 637v64h294v-64h-294z"/>
+<glyph glyph-name="degree" horiz-adv-x="400" unicode="°" d="M200 446q-60 0 -102 42t-42 101t42 101t102 42t102 -42t42 -101t-42 -101t-102 -42zM200 502q34 0 58 25t24 62t-24 62t-58 25t-58 -25t-24 -62t24 -62t58 -25z"/>
+<glyph glyph-name="plusminus" horiz-adv-x="600" unicode="±" d="M47 0v98h506v-98h-506zM251 369v137h98v-137h204v-98h-204v-137h-98v137h-204v98h204z"/>
+<glyph glyph-name="twosuperior" horiz-adv-x="266" unicode="²" d="M249 292h-235v81q78 87 112 146t34 105q0 28 -28 28q-14 0 -23 -10t-9 -24v-19h-86v20q0 49 36 81t93 32q49 0 79 -28t30 -68q0 -30 -5 -56t-19 -56t-38 -68q-26 -37 -67 -84h126v-80z"/>
+<glyph glyph-name="threesuperior" horiz-adv-x="266" unicode="³" d="M20 418h86v-21q0 -31 27 -31t27 39v25q0 34 -12 44t-45 10v74q31 0 43 12t12 46q0 40 -26 40q-25 0 -25 -28v-17h-84v20q1 45 31 73t82 28q54 0 84 -32t30 -79q0 -39 -10 -61t-37 -38q33 -18 43 -40t10 -68q0 -64 -30 -96t-95 -32q-51 0 -81 26t-30 81v25z"/>
+<glyph glyph-name="acute" horiz-adv-x="222" unicode="´" d="M254 746l-131 -144h-83l79 144h135z"/>
+<glyph glyph-name="mu" d="M278 538h112v-538h-106v54l-7 -6q-35 -30 -57 -42t-54 -16v-160h-112v708h112v-417q0 -39 40 -39q16 0 32 8t40 26v422z" unicode="µ"/>
+<glyph glyph-name="paragraph" horiz-adv-x="500" unicode="¶" d="M195 -80v432q-85 0 -137 51t-52 131q0 96 54 142t154 46h288v-64h-56v-738h-82v738h-87v-738h-82z"/>
+<glyph glyph-name="cedilla" horiz-adv-x="222" unicode="¸" d="M-9 -213l17 50q12 -5 32 -11t33 -6q27 0 43 12t16 29q0 19 -14 27t-33 8q-20 0 -36 -6l-22 18l68 92h48l-41 -60q14 2 21 2q37 -2 64 -22t27 -54q0 -46 -36 -74t-88 -28q-32 0 -56 7t-43 16z"/>
+<glyph glyph-name="onesuperior" horiz-adv-x="266" unicode="¹" d="M94 292v335h-52v48q55 21 99 57h49v-440h-96z"/>
+<glyph glyph-name="ordmasculine" horiz-adv-x="266" unicode="º" d="M20 517v95q0 56 27 88t86 32q61 0 87 -32t26 -88v-95q0 -57 -26 -89t-87 -32q-59 0 -86 32t-27 89zM164 509v110q0 49 -31 49t-31 -49v-110q0 -49 31 -49t31 49z"/>
+<glyph glyph-name="guillemotright" horiz-adv-x="500" unicode="»" d="M59 115l114 154l-117 154h99l115 -153l-115 -155h-96zM226 115l114 154l-117 154h99l115 -153l-115 -155h-96z"/>
+<glyph glyph-name="onequarter" horiz-adv-x="666" unicode="¼" d="M102 292v335h-52v48q53 21 99 56h49v-439h-96zM165 -10h-91l410 742h91zM512 0v100h-142v80l129 253h95v-257h38v-76h-38v-100h-82zM448 176h64v133h-2z"/>
+<glyph glyph-name="onehalf" horiz-adv-x="666" unicode="½" d="M633 0h-235v81q78 87 112 146t34 105q0 28 -28 28q-14 0 -23 -10t-9 -24v-19h-86v20q0 49 36 81t93 32q49 0 79 -28t30 -68q0 -30 -5 -56t-19 -56t-38 -68q-26 -37 -67 -84h126v-80zM100 292v335h-52v48q55 21 99 57h49v-440h-96zM157 -10h-91l410 742h91z"/>
+<glyph glyph-name="threequarters" horiz-adv-x="666" unicode="¾" d="M30 418h86v-21q0 -31 27 -31t27 39v25q0 34 -12 44t-45 10v74q31 0 43 12t12 46q0 40 -26 40q-25 0 -25 -28v-17h-84v20q1 45 31 73t82 28q54 0 84 -32t30 -79q0 -39 -10 -61t-37 -38q33 -18 43 -40t10 -68q0 -64 -30 -96t-95 -32q-51 0 -81 26t-30 81v25zM184 -10h-91 l410 742h91zM512 0v100h-142v80l129 253h95v-257h38v-76h-38v-100h-82zM448 176h64v133h-2z"/>
+<glyph glyph-name="questiondown" horiz-adv-x="389" unicode="¿" d="M147 538h118v-118h-118v118zM156 326h96v-84q0 -48 -14 -88t-38 -85q-4 -7 -11 -20q-21 -37 -31 -61t-10 -45q0 -19 12 -32t30 -13q29 0 46 22t25 54l96 -36q-23 -68 -67 -100t-114 -32q-58 0 -101 38t-43 96q0 46 14 77t43 70l5 8q30 41 46 79t16 98v54z"/>
+<glyph glyph-name="Agrave" d="M154 160l-22 -160h-120l133 722h154l133 -722h-120l-22 160h-136zM221 578l-49 -310h100l-49 310h-2zM210 760l-131 144h135l79 -144h-83z" unicode="À"/>
+<glyph glyph-name="Aacute" d="M154 160l-22 -160h-120l133 722h154l133 -722h-120l-22 160h-136zM221 578l-49 -310h100l-49 310h-2zM365 904l-131 -144h-83l79 144h135z" unicode="Á"/>
+<glyph glyph-name="Acircumflex" d="M154 160l-22 -160h-120l133 722h154l133 -722h-120l-22 160h-136zM221 578l-49 -310h100l-49 310h-2zM71 760l96 144h110l96 -144h-92l-59 89l-59 -89h-92z" unicode="Â"/>
+<glyph glyph-name="Atilde" d="M154 160l-22 -160h-120l133 722h154l133 -722h-120l-22 160h-136zM221 578l-49 -310h100l-49 310h-2zM329 891h56q-9 -52 -33 -85t-70 -33q-25 0 -65 20q-38 19 -60 19q-21 0 -31 -10t-11 -34h-56q9 52 33 85t70 33q23 0 62 -18l3 -1q3 -1 10 -5q33 -15 50 -15 q21 1 31 11t11 33z" unicode="Ã"/>
+<glyph glyph-name="Adieresis" d="M154 160l-22 -160h-120l133 722h154l133 -722h-120l-22 160h-136zM221 578l-49 -310h100l-49 310h-2zM89 880h108v-108h-108v108zM355 772h-108v108h108v-108z" unicode="Ä"/>
+<glyph glyph-name="Aring" d="M154 160l-22 -160h-120l133 722h154l133 -722h-120l-22 160h-136zM221 578l-49 -310h100l-49 310h-2zM170 862q0 -22 15 -37t37 -15t37 15t15 37t-15 37t-37 15t-37 -15t-15 -37zM120 862q0 42 30 72t72 30t72 -30t30 -72t-30 -72t-72 -30t-72 30t-30 72z" unicode="Å"/>
+<glyph glyph-name="AE" horiz-adv-x="722" unicode="Æ" d="M12 0l233 722h425v-108h-212v-186h164v-108h-164v-212h226v-108h-350v170h-144l-52 -170h-126zM224 278h110v354h-2z"/>
+<glyph glyph-name="Ccedilla" horiz-adv-x="500" unicode="Ç" d="M434 481h-124v56q0 43 -17 65t-43 22q-36 0 -51 -19t-15 -61v-366q0 -42 15 -61t51 -19q32 0 46 18t14 55v87h124v-83q0 -81 -48 -133q-40 -44 -110 -51l-35 -51q14 2 21 2q37 -2 64 -22t27 -54q-1 -46 -37 -74t-87 -28q-31 0 -55 7t-44 16l17 50q12 -5 32 -11t33 -6 q26 0 42 12t17 29q1 19 -13 27t-34 8t-36 -6l-22 18l61 83q-77 6 -119 51q-48 52 -48 133v372q0 81 48 133t142 52q88 0 136 -56t48 -142v-53z"/>
+<glyph glyph-name="Egrave" d="M406 0h-346v722h332v-108h-208v-186h160v-108h-160v-212h222v-108zM222 760l-131 144h135l79 -144h-83z" unicode="È"/>
+<glyph glyph-name="Eacute" d="M406 0h-346v722h332v-108h-208v-186h160v-108h-160v-212h222v-108zM377 904l-131 -144h-83l79 144h135z" unicode="É"/>
+<glyph glyph-name="Ecircumflex" d="M406 0h-346v722h332v-108h-208v-186h160v-108h-160v-212h222v-108zM83 760l96 144h110l96 -144h-92l-59 89l-59 -89h-92z" unicode="Ê"/>
+<glyph glyph-name="Edieresis" d="M406 0h-346v722h332v-108h-208v-186h160v-108h-160v-212h222v-108zM101 880h108v-108h-108v108zM367 772h-108v108h108v-108z" unicode="Ë"/>
+<glyph glyph-name="Igrave" horiz-adv-x="278" unicode="Ì" d="M201 0h-124v722h124v-722zM127 760l-131 144h135l79 -144h-83z"/>
+<glyph glyph-name="Iacute" horiz-adv-x="278" unicode="Í" d="M201 0h-124v722h124v-722zM282 904l-131 -144h-83l79 144h135z"/>
+<glyph glyph-name="Icircumflex" horiz-adv-x="278" unicode="Î" d="M201 0h-124v722h124v-722zM-12 760l96 144h110l96 -144h-92l-59 89l-59 -89h-92z"/>
+<glyph glyph-name="Idieresis" horiz-adv-x="278" unicode="Ï" d="M201 0h-124v722h124v-722zM6 880h108v-108h-108v108zM272 772h-108v108h108v-108z"/>
+<glyph glyph-name="Eth" horiz-adv-x="500" unicode="Ð" d="M258 428v-108h-74v-218h43q49 0 69 22t20 79v316q0 57 -20 79t-69 22h-43v-192h74zM20 320v108h40v294h184q96 0 146 -54t50 -164v-286q0 -110 -50 -164t-146 -54h-184v320h-40z"/>
+<glyph glyph-name="Ntilde" horiz-adv-x="500" unicode="Ñ" d="M172 0h-112v722h115l151 -413h2v413h112v-722h-108l-158 451h-2v-451zM357 891h56q-9 -52 -33 -85t-70 -33q-25 0 -65 20q-38 19 -60 19q-21 0 -31 -10t-11 -34h-56q9 52 33 85t70 33q23 0 62 -18l3 -1q3 -1 10 -5q33 -15 50 -15q21 1 31 11t11 33z"/>
+<glyph glyph-name="Ograve" horiz-adv-x="500" unicode="Ò" d="M184 544v-366q0 -42 15 -61t51 -19q38 0 52 19t14 61v366q0 42 -14 61t-52 19q-36 0 -51 -19t-15 -61zM60 175v372q0 81 48 133t142 52t142 -52t48 -133v-372q0 -81 -48 -133t-142 -52t-142 52t-48 133zM238 760l-131 144h135l79 -144h-83z"/>
+<glyph glyph-name="Oacute" horiz-adv-x="500" unicode="Ó" d="M184 544v-366q0 -42 15 -61t51 -19q38 0 52 19t14 61v366q0 42 -14 61t-52 19q-36 0 -51 -19t-15 -61zM60 175v372q0 81 48 133t142 52t142 -52t48 -133v-372q0 -81 -48 -133t-142 -52t-142 52t-48 133zM393 904l-131 -144h-83l79 144h135z"/>
+<glyph glyph-name="Ocircumflex" horiz-adv-x="500" unicode="Ô" d="M184 544v-366q0 -42 15 -61t51 -19q38 0 52 19t14 61v366q0 42 -14 61t-52 19q-36 0 -51 -19t-15 -61zM60 175v372q0 81 48 133t142 52t142 -52t48 -133v-372q0 -81 -48 -133t-142 -52t-142 52t-48 133zM99 760l96 144h110l96 -144h-92l-59 89l-59 -89h-92z"/>
+<glyph glyph-name="Otilde" horiz-adv-x="500" unicode="Õ" d="M184 544v-366q0 -42 15 -61t51 -19q38 0 52 19t14 61v366q0 42 -14 61t-52 19q-36 0 -51 -19t-15 -61zM60 175v372q0 81 48 133t142 52t142 -52t48 -133v-372q0 -81 -48 -133t-142 -52t-142 52t-48 133zM357 891h56q-9 -52 -33 -85t-70 -33q-25 0 -65 20q-38 19 -60 19 q-21 0 -31 -10t-11 -34h-56q9 52 33 85t70 33q23 0 62 -18l3 -1q3 -1 10 -5q33 -15 50 -15q21 1 31 11t11 33z"/>
+<glyph glyph-name="Odieresis" horiz-adv-x="500" unicode="Ö" d="M184 544v-366q0 -42 15 -61t51 -19q38 0 52 19t14 61v366q0 42 -14 61t-52 19q-36 0 -51 -19t-15 -61zM60 175v372q0 81 48 133t142 52t142 -52t48 -133v-372q0 -81 -48 -133t-142 -52t-142 52t-48 133zM117 880h108v-108h-108v108zM383 772h-108v108h108v-108z"/>
+<glyph glyph-name="multiply" horiz-adv-x="600" unicode="×" d="M553 437l-183 -184l183 -183l-69 -70l-184 184l-184 -184l-69 70l184 183l-184 184l69 69l184 -184l184 184z"/>
+<glyph glyph-name="Oslash" horiz-adv-x="500" unicode="Ø" d="M160 7l-50 -127h-82l69 176q-37 47 -37 119v372q0 81 48 133t142 52q61 0 103 -24l38 96h81l-59 -152q27 -43 27 -105v-372q0 -81 -48 -133t-142 -52q-51 0 -90 17zM314 424l-117 -303q12 -23 53 -23q38 0 52 19t14 61v246h-2zM186 257l126 325q-10 42 -62 42 q-36 0 -51 -19t-15 -61v-287h2z"/>
+<glyph glyph-name="Ugrave" horiz-adv-x="500" unicode="Ù" d="M60 182v540h124v-545q0 -79 66 -79t66 79v545h124v-540q0 -92 -50 -142t-140 -50t-140 50t-50 142zM238 760l-131 144h135l79 -144h-83z"/>
+<glyph glyph-name="Uacute" horiz-adv-x="500" unicode="Ú" d="M60 182v540h124v-545q0 -79 66 -79t66 79v545h124v-540q0 -92 -50 -142t-140 -50t-140 50t-50 142zM393 904l-131 -144h-83l79 144h135z"/>
+<glyph glyph-name="Ucircumflex" horiz-adv-x="500" unicode="Û" d="M60 182v540h124v-545q0 -79 66 -79t66 79v545h124v-540q0 -92 -50 -142t-140 -50t-140 50t-50 142zM99 760l96 144h110l96 -144h-92l-59 89l-59 -89h-92z"/>
+<glyph glyph-name="Udieresis" horiz-adv-x="500" unicode="Ü" d="M60 182v540h124v-545q0 -79 66 -79t66 79v545h124v-540q0 -92 -50 -142t-140 -50t-140 50t-50 142zM117 880h108v-108h-108v108zM383 772h-108v108h108v-108z"/>
+<glyph glyph-name="Yacute" d="M284 300v-300h-124v300l-150 422h126l87 -275h2l83 275h126zM365 904l-131 -144h-83l79 144h135z" unicode="Ý"/>
+<glyph glyph-name="Thorn" horiz-adv-x="500" unicode="Þ" d="M184 480v-222h48q62 0 84 24t22 87t-22 87t-84 24h-48zM184 722v-140h54q116 0 170 -50t54 -163t-54 -163t-170 -50h-54v-156h-124v722h124z"/>
+<glyph glyph-name="germandbls" d="M166 0h-112v540q0 92 41 140t118 48q49 0 82 -15t53 -41t27 -62q8 -35 8 -79q1 -61 -17 -95t-56 -39v-2q48 -15 70 -61t22 -130q0 -114 -28 -159t-88 -45h-66v95q12 -3 27 -3q23 0 31 16t8 51v101q0 78 -62 78v92q29 4 38 18t9 54v70q0 64 -52 64q-29 0 -41 -18t-12 -56 v-562z" unicode="ß"/>
+<glyph glyph-name="agrave" d="M273 132v141q-75 -41 -101 -73t-26 -69q0 -49 52 -49q22 0 40 14t35 36zM154 380h-112q4 80 52 124t128 44q79 0 121 -36t42 -110v-345q0 -15 6 -52l1 -5h-107q0 8 -3 23q-2 12 -3 19q-34 -28 -63 -40t-68 -12q-54 0 -84 34t-30 87q0 85 57 141t182 103v32q0 69 -55 69 q-36 0 -49 -19t-15 -57zM210 602l-131 144h135l79 -144h-83z" unicode="à"/>
+<glyph glyph-name="aacute" d="M273 132v141q-75 -41 -101 -73t-26 -69q0 -49 52 -49q22 0 40 14t35 36zM154 380h-112q4 80 52 124t128 44q79 0 121 -36t42 -110v-345q0 -15 6 -52l1 -5h-107q0 8 -3 23q-2 12 -3 19q-34 -28 -63 -40t-68 -12q-54 0 -84 34t-30 87q0 85 57 141t182 103v32q0 69 -55 69 q-36 0 -49 -19t-15 -57zM365 746l-131 -144h-83l79 144h135z" unicode="á"/>
+<glyph glyph-name="acircumflex" d="M273 132v141q-75 -41 -101 -73t-26 -69q0 -49 52 -49q22 0 40 14t35 36zM154 380h-112q4 80 52 124t128 44q79 0 121 -36t42 -110v-345q0 -15 6 -52l1 -5h-107q0 8 -3 23q-2 12 -3 19q-34 -28 -63 -40t-68 -12q-54 0 -84 34t-30 87q0 85 57 141t182 103v32q0 69 -55 69 q-36 0 -49 -19t-15 -57zM71 602l96 144h110l96 -144h-92l-59 89l-59 -89h-92z" unicode="â"/>
+<glyph glyph-name="atilde" d="M273 132v141q-75 -41 -101 -73t-26 -69q0 -49 52 -49q22 0 40 14t35 36zM154 380h-112q4 80 52 124t128 44q79 0 121 -36t42 -110v-345q0 -15 6 -52l1 -5h-107q0 8 -3 23q-2 12 -3 19q-34 -28 -63 -40t-68 -12q-54 0 -84 34t-30 87q0 85 57 141t182 103v32q0 69 -55 69 q-36 0 -49 -19t-15 -57zM329 733h56q-9 -52 -33 -85t-70 -33q-25 0 -65 20q-38 19 -60 19q-21 0 -31 -10t-11 -34h-56q9 52 33 85t70 33q23 0 62 -18l3 -1q3 -1 10 -5q33 -15 50 -15q21 1 31 11t11 33z" unicode="ã"/>
+<glyph glyph-name="adieresis" d="M273 132v141q-75 -41 -101 -73t-26 -69q0 -49 52 -49q22 0 40 14t35 36zM154 380h-112q4 80 52 124t128 44q79 0 121 -36t42 -110v-345q0 -15 6 -52l1 -5h-107q0 8 -3 23q-2 12 -3 19q-34 -28 -63 -40t-68 -12q-54 0 -84 34t-30 87q0 85 57 141t182 103v32q0 69 -55 69 q-36 0 -49 -19t-15 -57zM89 722h108v-108h-108v108zM355 614h-108v108h108v-108z" unicode="ä"/>
+<glyph glyph-name="aring" d="M273 132v141q-75 -41 -101 -73t-26 -69q0 -49 52 -49q22 0 40 14t35 36zM154 380h-112q4 80 52 124t128 44q79 0 121 -36t42 -110v-345q0 -15 6 -52l1 -5h-107q0 8 -3 23q-2 12 -3 19q-34 -28 -63 -40t-68 -12q-54 0 -84 34t-30 87q0 85 57 141t182 103v32q0 69 -55 69 q-36 0 -49 -19t-15 -57zM170 704q0 -22 15 -37t37 -15t37 15t15 37t-15 37t-37 15t-37 -15t-15 -37zM120 704q0 42 30 72t72 30t72 -30t30 -72t-30 -72t-72 -30t-72 30t-30 72z" unicode="å"/>
+<glyph glyph-name="ae" horiz-adv-x="667" unicode="æ" d="M619 248h-235v-78q0 -88 61 -88q31 0 47 21t15 67v12h112q-2 -92 -43 -142t-131 -50q-48 0 -82 18t-54 52q-49 -42 -83 -56t-66 -14q-62 0 -94 33t-32 88q0 85 56 141t182 103v32q0 69 -54 69q-36 0 -49 -19t-15 -57h-112q4 80 50 124t114 44q87 0 129 -50q39 50 119 50 q85 0 125 -53t40 -147v-100zM384 340h123v28q1 46 -15 67t-47 21q-61 0 -61 -88v-28zM272 132v141q-74 -41 -100 -73t-26 -69q0 -49 52 -49q22 0 40 14t34 36z"/>
+<glyph glyph-name="ccedilla" d="M396 354h-112v14q0 46 -16 67t-46 21t-46 -21t-16 -67v-198q0 -46 16 -67t46 -21t46 21t16 67v34h112v-14q0 -94 -42 -147q-35 -45 -106 -52l-35 -51q14 2 21 2q37 -2 64 -22t27 -54q-1 -46 -37 -74t-87 -28q-31 0 -55 7t-44 16l17 50q12 -5 32 -11t33 -6q26 0 42 12 t17 29q1 19 -13 27t-34 8t-36 -6l-22 18l61 83q-73 6 -109 52q-42 53 -42 147v158q0 94 42 147t132 53t131 -51t43 -143z" unicode="ç"/>
+<glyph glyph-name="egrave" d="M396 348v-100h-236v-78q0 -46 16 -67t46 -21t46 21t16 67v12h112q-2 -92 -43 -142t-131 -50t-132 53t-42 147v158q0 94 42 147t132 53t132 -53t42 -147zM160 340h124v28q0 46 -16 67t-46 21t-46 -21t-16 -67v-28zM210 602l-131 144h135l79 -144h-83z" unicode="è"/>
+<glyph glyph-name="eacute" d="M396 348v-100h-236v-78q0 -46 16 -67t46 -21t46 21t16 67v12h112q-2 -92 -43 -142t-131 -50t-132 53t-42 147v158q0 94 42 147t132 53t132 -53t42 -147zM160 340h124v28q0 46 -16 67t-46 21t-46 -21t-16 -67v-28zM365 746l-131 -144h-83l79 144h135z" unicode="é"/>
+<glyph glyph-name="ecircumflex" d="M396 348v-100h-236v-78q0 -46 16 -67t46 -21t46 21t16 67v12h112q-2 -92 -43 -142t-131 -50t-132 53t-42 147v158q0 94 42 147t132 53t132 -53t42 -147zM160 340h124v28q0 46 -16 67t-46 21t-46 -21t-16 -67v-28zM71 602l96 144h110l96 -144h-92l-59 89l-59 -89h-92z" unicode="ê"/>
+<glyph glyph-name="edieresis" d="M396 348v-100h-236v-78q0 -46 16 -67t46 -21t46 21t16 67v12h112q-2 -92 -43 -142t-131 -50t-132 53t-42 147v158q0 94 42 147t132 53t132 -53t42 -147zM160 340h124v28q0 46 -16 67t-46 21t-46 -21t-16 -67v-28zM89 722h108v-108h-108v108zM355 614h-108v108h108v-108z " unicode="ë"/>
+<glyph glyph-name="igrave" horiz-adv-x="222" unicode="ì" d="M167 0h-112v538h112v-538zM99 602l-131 144h135l79 -144h-83z"/>
+<glyph glyph-name="iacute" horiz-adv-x="222" unicode="í" d="M167 0h-112v538h112v-538zM254 746l-131 -144h-83l79 144h135z"/>
+<glyph glyph-name="icircumflex" horiz-adv-x="222" unicode="î" d="M167 0h-112v538h112v-538zM-40 602l96 144h110l96 -144h-92l-59 89l-59 -89h-92z"/>
+<glyph glyph-name="idieresis" horiz-adv-x="222" unicode="ï" d="M167 0h-112v538h112v-538zM-22 722h108v-108h-108v108zM244 614h-108v108h108v-108z"/>
+<glyph glyph-name="eth" d="M386 718l30 -70l-95 -37q35 -61 55 -138t20 -159v-140q0 -88 -41 -136t-133 -48t-133 48t-41 136v140q0 88 41 136t133 48q10 0 30 -1l7 -1q-1 20 -9 40t-20 40l-105 -40l-27 72l93 35q-23 34 -47 55l86 24q25 -18 47 -46zM284 163v162q0 41 -16 61t-46 20t-46 -20 t-16 -61v-162q0 -41 16 -61t46 -20t46 20t16 61z" unicode="ð"/>
+<glyph glyph-name="ntilde" d="M166 0h-112v538h106v-54l8 7q38 33 62 45t66 12q44 0 69 -30t25 -83v-435h-112v417q0 39 -40 39q-16 0 -32 -8t-40 -26v-422zM329 733h56q-9 -52 -33 -85t-70 -33q-25 0 -65 20q-38 19 -60 19q-21 0 -31 -10t-11 -34h-56q9 52 33 85t70 33q23 0 62 -18l3 -1q3 -1 10 -5 q33 -15 50 -15q21 1 31 11t11 33z" unicode="ñ"/>
+<glyph glyph-name="ograve" d="M48 190v158q0 94 42 147t132 53t132 -53t42 -147v-158q0 -94 -42 -147t-132 -53t-132 53t-42 147zM284 170v198q0 46 -16 67t-46 21t-46 -21t-16 -67v-198q0 -46 16 -67t46 -21t46 21t16 67zM210 602l-131 144h135l79 -144h-83z" unicode="ò"/>
+<glyph glyph-name="oacute" d="M48 190v158q0 94 42 147t132 53t132 -53t42 -147v-158q0 -94 -42 -147t-132 -53t-132 53t-42 147zM284 170v198q0 46 -16 67t-46 21t-46 -21t-16 -67v-198q0 -46 16 -67t46 -21t46 21t16 67zM365 746l-131 -144h-83l79 144h135z" unicode="ó"/>
+<glyph glyph-name="ocircumflex" d="M48 190v158q0 94 42 147t132 53t132 -53t42 -147v-158q0 -94 -42 -147t-132 -53t-132 53t-42 147zM284 170v198q0 46 -16 67t-46 21t-46 -21t-16 -67v-198q0 -46 16 -67t46 -21t46 21t16 67zM71 602l96 144h110l96 -144h-92l-59 89l-59 -89h-92z" unicode="ô"/>
+<glyph glyph-name="otilde" d="M48 190v158q0 94 42 147t132 53t132 -53t42 -147v-158q0 -94 -42 -147t-132 -53t-132 53t-42 147zM284 170v198q0 46 -16 67t-46 21t-46 -21t-16 -67v-198q0 -46 16 -67t46 -21t46 21t16 67zM329 733h56q-9 -52 -33 -85t-70 -33q-25 0 -65 20q-38 19 -60 19 q-21 0 -31 -10t-11 -34h-56q9 52 33 85t70 33q23 0 62 -18l3 -1q3 -1 10 -5q33 -15 50 -15q21 1 31 11t11 33z" unicode="õ"/>
+<glyph glyph-name="odieresis" d="M48 190v158q0 94 42 147t132 53t132 -53t42 -147v-158q0 -94 -42 -147t-132 -53t-132 53t-42 147zM284 170v198q0 46 -16 67t-46 21t-46 -21t-16 -67v-198q0 -46 16 -67t46 -21t46 21t16 67zM89 722h108v-108h-108v108zM355 614h-108v108h108v-108z" unicode="ö"/>
+<glyph glyph-name="divide" horiz-adv-x="600" unicode="÷" d="M220 46q0 32 24 56t56 24t56 -24t24 -56t-24 -56t-56 -24t-56 24t-24 56zM220 460q0 32 24 56t56 24t56 -24t24 -56t-24 -56t-56 -24t-56 24t-24 56zM553 204h-506v98h506v-98z"/>
+<glyph glyph-name="oslash" d="M162 173l100 269q-14 14 -40 14q-30 0 -46 -21t-16 -67v-195h2zM153 1l-45 -121h-66l58 153q-28 25 -40 65t-12 92v158q0 94 42 147t132 53q38 0 71 -11l41 109h68l-54 -143q24 -26 36 -65t12 -90v-158q0 -94 -42 -147t-132 -53q-39 0 -69 11zM282 353l-98 -259 q17 -12 38 -12q30 0 46 21t16 67v183h-2z" unicode="ø"/>
+<glyph glyph-name="ugrave" d="M278 538h112v-538h-106v54l-8 -7q-38 -33 -62 -45t-66 -12q-44 0 -69 30t-25 83v435h112v-417q0 -39 40 -39q16 0 32 8t40 26v422zM210 602l-131 144h135l79 -144h-83z" unicode="ù"/>
+<glyph glyph-name="uacute" d="M278 538h112v-538h-106v54l-8 -7q-38 -33 -62 -45t-66 -12q-44 0 -69 30t-25 83v435h112v-417q0 -39 40 -39q16 0 32 8t40 26v422zM365 746l-131 -144h-83l79 144h135z" unicode="ú"/>
+<glyph glyph-name="ucircumflex" d="M278 538h112v-538h-106v54l-8 -7q-38 -33 -62 -45t-66 -12q-44 0 -69 30t-25 83v435h112v-417q0 -39 40 -39q16 0 32 8t40 26v422zM71 602l96 144h110l96 -144h-92l-59 89l-59 -89h-92z" unicode="û"/>
+<glyph glyph-name="udieresis" d="M278 538h112v-538h-106v54l-8 -7q-38 -33 -62 -45t-66 -12q-44 0 -69 30t-25 83v435h112v-417q0 -39 40 -39q16 0 32 8t40 26v422zM89 722h108v-108h-108v108zM355 614h-108v108h108v-108z" unicode="ü"/>
+<glyph glyph-name="yacute" horiz-adv-x="389" unicode="ý" d="M198 194l68 344h113l-141 -578q-18 -72 -53 -100t-100 -29h-47v92h27q41 0 57 21t17 66q0 26 -12 71l-117 457h114l72 -344h2zM338 746l-131 -144h-83l79 144h135z"/>
+<glyph glyph-name="thorn" d="M166 428v-318q39 -28 64 -28q26 0 40 19t14 68v200q0 49 -14 68t-40 19q-25 0 -64 -28zM54 722h112v-235h2q24 33 49 47t65 14q54 0 84 -38t30 -112v-258q0 -74 -30 -112t-84 -38q-33 0 -54 12t-58 41l-4 3v-216h-112v892z" unicode="þ"/>
+<glyph glyph-name="OE" horiz-adv-x="722" unicode="Œ" d="M684 0h-414q-102 0 -156 56t-54 164v282q0 108 54 164t156 56h400v-108h-216v-186h168v-108h-168v-212h230v-108zM330 185v355q0 39 -18 57t-51 18q-39 1 -58 -25t-19 -70v-315q0 -43 19 -69t58 -26q33 0 51 18t18 57z"/>
+<glyph glyph-name="oe" horiz-adv-x="667" unicode="œ" d="M619 248h-229v-78q0 -48 12 -68t43 -20t47 21t15 67v12h112q-2 -90 -41 -141t-121 -51q-44 0 -74 16t-47 46q-16 -30 -46 -46t-80 -16q-82 0 -122 54t-40 146v158q0 92 40 146t122 54q52 0 82 -15t46 -46q36 61 119 61t123 -54t39 -146v-100zM390 340h117v28q1 46 -15 67 t-47 21t-43 -20t-12 -68v-28zM278 170v198q0 44 -15 66t-41 22q-30 0 -46 -21t-16 -67v-198q0 -46 16 -67t46 -21q26 0 41 22t15 66z"/>
+<glyph glyph-name="Scaron" d="M404 557l-118 -13q-3 44 -22 62t-44 18q-62 0 -62 -71q0 -37 26 -67t78 -76q36 -30 58 -52t44 -49t34 -61t12 -73q0 -87 -54 -136t-142 -49q-82 0 -132 58t-54 142l118 17q4 -53 24 -81t50 -28q32 0 52 17t20 49q0 44 -26 76t-83 79q-35 30 -57 51q-22 22 -42 48t-32 60 t-12 74q0 86 50 133t142 47q74 0 119 -48t53 -127zM373 904l-96 -144h-110l-96 144h92l59 -89l59 89h92z" unicode="Š"/>
+<glyph glyph-name="scaron" horiz-adv-x="389" unicode="š" d="M353 405l-95 -16q-12 67 -64 67q-22 0 -36 -11t-13 -32q-1 -23 19 -43t61 -49q29 -21 49 -37t40 -39q19 -21 30 -49t11 -61q0 -69 -43 -107t-114 -38q-72 0 -115 39t-56 111l98 27q7 -41 23 -63t51 -22q22 0 36 12t14 35q0 28 -21 50t-66 54q-30 21 -49 37t-36 36t-27 44 q-10 25 -11 54q0 64 43 104t107 40q63 0 107 -39t57 -104zM346 746l-96 -144h-110l-96 144h92l59 -89l59 89h92z"/>
+<glyph glyph-name="Ydieresis" d="M284 300v-300h-124v300l-150 422h126l87 -275h2l83 275h126zM89 880h108v-108h-108v108zM355 772h-108v108h108v-108z" unicode="Ÿ"/>
+<glyph glyph-name="circumflex" horiz-adv-x="222" unicode="ˆ" d="M-40 602l96 144h110l96 -144h-92l-59 89l-59 -89h-92z"/>
+<glyph glyph-name="tilde" horiz-adv-x="222" unicode="˜" d="M218 733h56q-10 -52 -34 -85t-69 -33q-25 0 -65 20q-38 19 -60 19t-32 -10t-10 -34h-56q10 52 34 85t69 33q23 0 62 -18l3 -1q3 -1 10 -5q33 -15 50 -15q22 1 32 11t10 33z"/>
+<glyph glyph-name="endash" horiz-adv-x="500" unicode="–" d="M500 233h-500v72h500v-72z"/>
+<glyph glyph-name="emdash" horiz-adv-x="1000" unicode="—" d="M1000 233h-1000v72h1000v-72z"/>
+<glyph glyph-name="quoteleft" horiz-adv-x="222" unicode="‘" d="M52 490v118l69 124h53l-49 -124h45v-118h-118z"/>
+<glyph glyph-name="quotesinglbase" horiz-adv-x="222" unicode="‚" d="M170 118v-118l-69 -124h-53l49 124h-45v118h118z"/>
+<glyph glyph-name="quotedblleft" d="M255 490v118l69 124h53l-49 -124h45v-118h-118zM70 490v118l69 124h53l-49 -124h45v-118h-118z" unicode="“"/>
+<glyph glyph-name="quotedblright" d="M189 722v-118l-69 -124h-53l49 124h-45v118h118zM374 722v-118l-69 -124h-53l49 124h-45v118h118z" unicode="”"/>
+<glyph glyph-name="dagger" horiz-adv-x="500" unicode="†" d="M434 574v-124l-167 42l45 -169q-14 -46 -22 -137t-21 -266h-38q-13 175 -21 266t-22 137l45 169l-167 -42v124l163 -42l-39 200h120l-39 -200z"/>
+<glyph glyph-name="daggerdbl" horiz-adv-x="500" unicode="‡" d="M434 574v-124l-167 42l45 -166l-45 -166l167 42v-124l-163 42l39 -200h-120l39 200l-163 -42v124l167 -42l-45 166l45 166l-167 -42v124l163 -42l-39 200h120l-39 -200z"/>
+<glyph glyph-name="ellipsis" horiz-adv-x="1000" unicode="…" d="M890 0h-114v118h114v-118zM557 0h-114v118h114v-118zM224 0h-114v118h114v-118z"/>
+<glyph glyph-name="perthousand" horiz-adv-x="1000" unicode="‰" d="M96 -10l411 742h70l-411 -742h-70zM766 150q0 -30 20 -50t50 -20t50 20t20 50t-20 50t-50 20t-50 -20t-20 -50zM686 150q0 31 12 58t32 48q20 20 48 32t58 12q31 0 58 -12t48 -32q20 -21 32 -48t12 -58q0 -30 -12 -58t-32 -48q-21 -20 -48 -32t-58 -12q-30 0 -58 12 t-48 32t-32 48t-12 58zM412 150q0 -30 20 -50t50 -20t50 20t20 50t-20 50t-50 20t-50 -20t-20 -50zM332 150q0 31 12 58t32 48q20 20 48 32t58 12q31 0 58 -12t48 -32q20 -21 32 -48t12 -58q0 -30 -12 -58t-32 -48q-21 -20 -48 -32t-58 -12q-30 0 -58 12t-48 32t-32 48 t-12 58zM94 572q0 -30 20 -50t50 -20t50 20t20 50t-20 50t-50 20t-50 -20t-20 -50zM14 572q0 31 12 58t32 48q20 20 48 32t58 12q31 0 58 -12t48 -32q20 -21 32 -48t12 -58q0 -30 -12 -58t-32 -48q-21 -20 -48 -32t-58 -12q-30 0 -58 12t-48 32t-32 48t-12 58z"/>
+<glyph glyph-name="guilsinglleft" horiz-adv-x="333" unicode="‹" d="M160 269l114 -154h-96l-115 155l115 153h99z"/>
+<glyph glyph-name="guilsinglright" horiz-adv-x="333" unicode="›" d="M59 115l114 154l-117 154h99l115 -153l-115 -155h-96z"/>
+<glyph glyph-name="trademark" horiz-adv-x="990" unicode="™" d="M370 722v-75h-120v-337h-96v337h-120v75h336zM559 722l103 -271l103 271h135v-412h-92v302h-2l-110 -302h-69l-110 302h-2v-302h-92v412h136z"/>
+<hkern k="18" u1="A" u2="y"/>
+<hkern k="18" u1="A" u2="w"/>
+<hkern k="18" u1="A" u2="v"/>
+<hkern k="55" u1="A" u2="Y"/>
+<hkern k="37" u1="A" u2="W"/>
+<hkern k="37" u1="A" u2="V"/>
+<hkern k="37" u1="A" u2="T"/>
+<hkern k="37" u1="F" u2="A"/>
+<hkern k="92" u1="F" u2="."/>
+<hkern k="92" u1="F" u2=","/>
+<hkern k="55" u1="L" u2="Y"/>
+<hkern k="37" u1="L" u2="W"/>
+<hkern k="37" u1="L" u2="V"/>
+<hkern k="18" u1="L" u2="T"/>
+<hkern k="129" u1="P" u2="."/>
+<hkern k="129" u1="P" u2=","/>
+<hkern k="18" u1="R" u2="Y"/>
+<hkern k="37" u1="T" u2="y"/>
+<hkern k="37" u1="T" u2="w"/>
+<hkern k="37" u1="T" u2="u"/>
+<hkern k="37" u1="T" u2="s"/>
+<hkern k="37" u1="T" u2="r"/>
+<hkern k="37" u1="T" u2="o"/>
+<hkern k="37" u1="T" u2="i"/>
+<hkern k="37" u1="T" u2="e"/>
+<hkern k="37" u1="T" u2="c"/>
+<hkern k="37" u1="T" u2="a"/>
+<hkern k="18" u1="T" u2="A"/>
+<hkern k="55" u1="T" u2=";"/>
+<hkern k="55" u1="T" u2=":"/>
+<hkern k="55" u1="T" u2="."/>
+<hkern k="55" u1="T" u2="-"/>
+<hkern k="55" u1="T" u2=","/>
+<hkern k="37" u1="V" u2="A"/>
+<hkern k="37" u1="V" u2="."/>
+<hkern k="37" u1="V" u2=","/>
+<hkern k="37" u1="W" u2="A"/>
+<hkern k="18" u1="W" u2="."/>
+<hkern k="18" u1="W" u2=","/>
+<hkern k="18" u1="Y" u2="q"/>
+<hkern k="18" u1="Y" u2="o"/>
+<hkern k="18" u1="Y" u2="e"/>
+<hkern k="18" u1="Y" u2="a"/>
+<hkern k="55" u1="Y" u2="A"/>
+<hkern k="18" u1="Y" u2=";"/>
+<hkern k="18" u1="Y" u2=":"/>
+<hkern k="55" u1="Y" u2="."/>
+<hkern k="37" u1="Y" u2="-"/>
+<hkern k="55" u1="Y" u2=","/>
+<hkern k="74" u1="r" u2="."/>
+<hkern k="55" u1="r" u2="-"/>
+<hkern k="74" u1="r" u2=","/>
+<hkern k="55" u1="v" u2="."/>
+<hkern k="55" u1="v" u2=","/>
+<hkern k="37" u1="w" u2="."/>
+<hkern k="37" u1="w" u2=","/>
+<hkern k="55" u1="y" u2="."/>
+<hkern k="55" u1="y" u2=","/>
+<hkern k="37" u1="‘" u2="‘"/>
+</font>
+</defs>
+</svg>
diff --git a/public/bebraven/TradeGothicNo.20-CondBold_gdi.ttf b/public/bebraven/TradeGothicNo.20-CondBold_gdi.ttf
new file mode 100644
index 00000000..a7028f12
Binary files /dev/null and b/public/bebraven/TradeGothicNo.20-CondBold_gdi.ttf differ
diff --git a/public/bebraven/TradeGothicNo.20-CondBold_gdi.woff b/public/bebraven/TradeGothicNo.20-CondBold_gdi.woff
new file mode 100644
index 00000000..952f6202
Binary files /dev/null and b/public/bebraven/TradeGothicNo.20-CondBold_gdi.woff differ
diff --git a/public/bebraven/trimmed.css b/public/bebraven/trimmed.css
new file mode 100644
index 00000000..e72f0e75
--- /dev/null
+++ b/public/bebraven/trimmed.css
@@ -0,0 +1,1241 @@
+@font-face {
+	font-family: 'TradeGothic';
+	src: url('TradeGothicNo.20-CondBold_gdi.eot');
+	src: url('TradeGothicNo.20-CondBold_gdi.eot?#iefix') format('embedded-opentype'),
+			url('TradeGothicNo.20-CondBold_gdi.woff') format('woff'),
+			url('TradeGothicNo.20-CondBold_gdi.ttf') format('truetype'),
+			url('TradeGothicNo.20-CondBold_gdi.svg#TradeGothicNo.20-CondBold') format('svg');
+	font-weight: 700;
+	font-style: normal;
+	font-stretch: expanded;
+	unicode-range: U+0020-2122;
+}
+
+html {
+	-ms-text-size-adjust: 100%;
+	-webkit-text-size-adjust: 100%;
+	-webkit-tap-highlight-color: rgba(0,0,0,0);
+	-webkit-text-size-adjust: 100%;
+	-ms-text-size-adjust: 100%;
+	border: 0;
+	font-family: sans-serif;
+	font-size: 100%;
+	font-family: "Source Sans Pro", Helvetica, sans-serif;
+	height: 100%;
+	margin: 0;
+	overflow-y: scroll;
+	padding: 0;
+	vertical-align: baseline;
+}
+
+body {
+	background: rgba(44,62,80,0.92);
+	background: #fff;
+	border: 0;
+	color: #141412;
+	font-size: 14px;
+	font-family: Georgia, "Times New Roman", Times, serif;
+	height: 100%;
+	line-height: 1.5;
+	margin: 0;
+	padding: 0;
+	vertical-align: baseline;
+}
+
+main {
+	display: block;
+	margin-right: auto;
+	margin-left: auto;
+	min-height: 700px;
+	padding-left: 15px;
+	padding-right: 15px;
+	padding-left: 0em;
+	padding-right: 0em;
+	width: 100%;
+}
+
+nav {
+	border: 0;
+	display: block;
+	font-size: 100%;
+	font: inherit;
+	margin: 0;
+	padding: 0;
+	vertical-align: baseline;
+}
+
+section {
+	border: 0;
+	display: block;
+	font-size: 100%;
+	font: inherit;
+	margin-left: -15px;
+	margin-right: -15px;
+	margin: 0;
+	padding: 0;
+	vertical-align: baseline;
+}
+
+a {
+	-webkit-transition: all 0.5s ease;
+	-moz-transition: all 0.5s ease;
+	-o-transition: all 0.5s ease;
+	-ms-transition: all 0.5s ease;
+	background: transparent;
+	border: 0;
+	color: #428bca;
+	color: rgba(74,92,110,0.92);
+	color: #eb3b45;
+	font-size: 100%;
+	font: inherit;
+	margin: 0;
+	padding: 0;
+	text-decoration: none;
+	transition: all 0.5s ease;
+	vertical-align: baseline;
+}
+
+a:active {
+	color: #000000;
+	outline: 0;
+	outline: 0;
+}
+
+a:hover {
+	-webkit-transition: all 0.5s ease;
+	-moz-transition: all 0.5s ease;
+	-o-transition: all 0.5s ease;
+	-ms-transition: all 0.5s ease;
+	color: #2a6496;
+	color: #fff;
+	color: #000000;
+	outline: 0;
+	outline: 0;
+	text-decoration: underline;
+	text-decoration: none;
+	text-decoration: none;
+	transition: all 0.5s ease;
+}
+
+img {
+	-ms-interpolation-mode: bicubic;
+	border: 0;
+	border: 0;
+	border: 0;
+	display: block;
+	font-size: 100%;
+	font: inherit;
+	height: auto;
+	margin: 0 auto;
+	margin: 0;
+	max-width: 100%;
+	max-width: 100%;
+	padding: 0;
+	vertical-align: middle;
+	vertical-align: baseline;
+	vertical-align: middle;
+}
+
+button {
+	-webkit-appearance: button;
+	-webkit-appearance: button;
+	border: none;
+	border-radius: 2px;
+	color: inherit;
+	color: #fff;
+	cursor: pointer;
+	cursor: pointer;
+	font: inherit;
+	font-family: inherit;
+	font-size: inherit;
+	font-family: "Source Sans Pro", Helvetica, sans-serif;
+	font-size: 100%;
+	line-height: inherit;
+	line-height: normal;
+	margin: 0;
+	margin: 0;
+	max-width: 100%;
+	overflow: visible;
+	text-transform: none;
+	vertical-align: baseline;
+}
+
+input {
+	color: inherit;
+	font: inherit;
+	font-family: inherit;
+	font-size: inherit;
+	font-family: "Source Sans Pro", Helvetica, sans-serif;
+	font-size: 100%;
+	line-height: normal;
+	line-height: inherit;
+	line-height: normal;
+	margin: 0;
+	margin: 0;
+	max-width: 100%;
+	vertical-align: baseline;
+}
+
+input[type="submit"] {
+	-webkit-appearance: button;
+	-webkit-appearance: button;
+	border: none;
+	border-radius: 2px;
+	color: #fff;
+	cursor: pointer;
+	cursor: pointer;
+}
+
+button::-moz-focus-inner {
+	border: 0;
+	border: 0;
+	padding: 0;
+	padding: 0;
+}
+
+input::-moz-focus-inner {
+	border: 0;
+	border: 0;
+	padding: 0;
+	padding: 0;
+}
+
+@media print {
+	* {
+		text-shadow: none !important;
+		color: #000 !important;
+		background: transparent !important;
+		box-shadow: none !important;
+	}
+	a {
+		text-decoration: underline;
+	}
+	a:visited {
+		text-decoration: underline;
+	}
+	a[href]:after {
+		content: " (" attr(href) ")";
+	}
+	a[href^="#"]:after {
+		content: "";
+	}
+	img {
+		max-width: 100% !important;
+		page-break-inside: avoid;
+	}
+	p {
+		orphans: 3;
+		widows: 3;
+	}
+	h2 {
+		orphans: 3;
+		page-break-after: avoid;
+		widows: 3;
+	}
+	h3 {
+		orphans: 3;
+		page-break-after: avoid;
+		widows: 3;
+	}
+}
+
+* {
+	-webkit-box-sizing: border-box;
+	-moz-box-sizing: border-box;
+	-webkit-box-sizing: border-box;
+	-moz-box-sizing: border-box;
+	-o-box-sizing: border-box;
+	-ms-box-sizing: border-box;
+	-webkit-box-sizing: border-box;
+	-moz-box-sizing: border-box;
+	box-sizing: border-box;
+	box-sizing: border-box;
+	box-sizing: border-box;
+}
+
+*:before {
+	-webkit-box-sizing: border-box;
+	-moz-box-sizing: border-box;
+	box-sizing: border-box;
+}
+
+*:after {
+	-webkit-box-sizing: border-box;
+	-moz-box-sizing: border-box;
+	box-sizing: border-box;
+}
+
+a:focus {
+	color: #2a6496;
+	outline: thin dotted;
+	outline: 5px auto -webkit-focus-ring-color;
+	outline-offset: -2px;
+	outline: thin dotted;
+	text-decoration: underline;
+	text-decoration: none;
+}
+
+h2 {
+	border: 0;
+	clear: both;
+	color: inherit;
+	font-family: inherit;
+	font-weight: 500;
+	font-size: 30px;
+	font-weight: normal;
+	font-weight: 400;
+	font-size: 36px;
+	font-size: 100%;
+	font: inherit;
+	font-family: TradeGothic, Impact, "Source Sans Pro", sans-serif;
+	font-weight: 100;
+	font-size: 30px;
+	line-height: 1.1;
+	line-height: 1.3;
+	margin-top: 20px;
+	margin-bottom: 10px;
+	margin-top: 24px;
+	margin-bottom: 8px;
+	margin: 0;
+	margin: 24px 0 10px;
+	padding: 0;
+	text-transform: uppercase;
+	text-transform: uppercase;
+	vertical-align: baseline;
+}
+
+h3 {
+	border: 0;
+	clear: both;
+	color: inherit;
+	font-family: inherit;
+	font-weight: 500;
+	font-size: 24px;
+	font-weight: normal;
+	font-weight: 400;
+	font-size: 24px;
+	font-size: 100%;
+	font: inherit;
+	font-family: TradeGothic, Impact, "Source Sans Pro", sans-serif;
+	font-weight: 100;
+	font-size: 22px;
+	line-height: 1.1;
+	line-height: 1.3;
+	margin-top: 20px;
+	margin-bottom: 10px;
+	margin-top: 16px;
+	margin-bottom: 8px;
+	margin: 0;
+	margin: 21px 0 10px;
+	padding: 0;
+	text-transform: uppercase;
+	vertical-align: baseline;
+}
+
+h4 {
+	border: 0;
+	clear: both;
+	color: inherit;
+	font-family: inherit;
+	font-weight: 500;
+	font-size: 18px;
+	font-weight: bold;
+	font-weight: 700;
+	font-size: 18px;
+	font-size: 100%;
+	font: inherit;
+	font-family: TradeGothic, Impact, "Source Sans Pro", sans-serif;
+	font-weight: 100;
+	font-size: 20px;
+	line-height: 1.1;
+	line-height: 1.3;
+	margin-top: 10px;
+	margin-bottom: 10px;
+	margin: 0;
+	margin: 14px 0;
+	padding: 0;
+	text-transform: uppercase;
+	vertical-align: baseline;
+}
+
+p {
+	border: 0;
+	font-size: 100%;
+	font: inherit;
+	font-size: 1.2em;
+	line-height: 2.0em;
+	margin: 0 0 10px;
+	margin: 0;
+	margin: 0 0 24px;
+	padding: 0;
+	vertical-align: baseline;
+}
+
+ul {
+	border: 0;
+	font-size: 100%;
+	font: inherit;
+	list-style: none;
+	list-style: none;
+	margin-top: 0;
+	margin-bottom: 10px;
+	margin: 0;
+	margin: 10px 0 25px;
+	padding: 0;
+	padding: 0 0 0 40px;
+	vertical-align: baseline;
+}
+
+ul ul {
+	margin-bottom: 0;
+}
+
+.container {
+	margin-right: auto;
+	margin-left: auto;
+	padding-left: 15px;
+	padding-right: 15px;
+}
+
+.plank .section-container {
+	margin-right: auto;
+	margin-left: auto;
+	padding-left: 15px;
+	padding-right: 15px;
+}
+
+.container:before {
+	content: " ";
+	display: table;
+}
+
+.plank .section-container:before {
+	content: " ";
+	display: table;
+}
+
+.container:after {
+	clear: both;
+	content: " ";
+	display: table;
+}
+
+.plank .section-container:after {
+	clear: both;
+	content: " ";
+	display: table;
+}
+
+@media (min-width: 768px) {
+	.container {
+		width: 750px;
+	}
+	.plank .section-container {
+		width: 750px;
+	}
+}
+
+@media (min-width: 992px) {
+	.container {
+		width: 970px;
+	}
+	.plank .section-container {
+		width: 970px;
+	}
+}
+
+@media (min-width: 1200px) {
+	.container {
+		width: 1170px;
+	}
+	.plank .section-container {
+		width: 1170px;
+	}
+}
+
+main:before {
+	content: " ";
+	display: table;
+}
+
+main:after {
+	clear: both;
+	content: " ";
+	display: table;
+}
+
+section:before {
+	content: " ";
+	display: table;
+}
+
+section:after {
+	clear: both;
+	content: " ";
+	display: table;
+}
+
+.col-md-4 {
+	position: relative;
+	min-height: 1px;
+	padding-left: 15px;
+	padding-right: 15px;
+}
+
+@media (min-width: 992px) {
+	.col-md-4 {
+		float: left;
+		width: 33.3333333333%;
+	}
+	.col-md-offset-4 {
+		margin-left: 33.3333333333%;
+	}
+}
+
+label {
+	border: 0;
+	display: inline-block;
+	font-weight: bold;
+	font-size: 100%;
+	font: inherit;
+	margin-bottom: 5px;
+	margin: 0;
+	max-width: 100%;
+	padding: 0;
+	vertical-align: baseline;
+}
+
+.form-control {
+	display: block;
+	width: 100%;
+	height: 34px;
+	padding: 6px 12px;
+	font-size: 14px;
+	line-height: 1.428571429;
+	color: #555555;
+	background-color: white;
+	background-image: none;
+	border: 1px solid #cccccc;
+	border-radius: 4px;
+	-webkit-box-shadow: inset 0 1px 1px rgba(0,0,0,0.075);
+	box-shadow: inset 0 1px 1px rgba(0,0,0,0.075);
+	-webkit-transition: border-color ease-in-out 0.15s, box-shadow ease-in-out 0.15s;
+	-o-transition: border-color ease-in-out 0.15s, box-shadow ease-in-out 0.15s;
+	transition: border-color ease-in-out 0.15s, box-shadow ease-in-out 0.15s;
+}
+
+.form-control:focus {
+	border-color: #66afe9;
+	outline: 0;
+	-webkit-box-shadow: inset 0 1px 1px rgba(0,0,0,0.075),0 0 8px rgba(102,175,233,0.6);
+	box-shadow: inset 0 1px 1px rgba(0,0,0,0.075),0 0 8px rgba(102,175,233,0.6);
+}
+
+.form-control::-moz-placeholder {
+	color: #999999;
+	opacity: 1;
+}
+
+.form-control:-ms-input-placeholder {
+	color: #999999;
+}
+
+.form-control::-webkit-input-placeholder {
+	color: #999999;
+}
+
+.btn {
+	display: inline-block;
+	margin-bottom: 0;
+	font-weight: normal;
+	text-align: center;
+	vertical-align: middle;
+	cursor: pointer;
+	background-image: none;
+	border: 1px solid transparent;
+	white-space: nowrap;
+	padding: 6px 12px;
+	font-size: 14px;
+	line-height: 1.428571429;
+	border-radius: 4px;
+	-webkit-user-select: none;
+	-moz-user-select: none;
+	-ms-user-select: none;
+	user-select: none;
+}
+
+.button-primary {
+	-webkit-user-select: none;
+	-moz-user-select: none;
+	-ms-user-select: none;
+	-webkit-border-radius: 5px;
+	-moz-border-radius: 5px;
+	background-image: none;
+	background-color: #428bca;
+	background-color: #eb3b45;
+	background: #000000;
+	background: #eb3b45;
+	border: 1px solid transparent;
+	border-radius: 4px;
+	border-color: #357ebd;
+	border-radius: 6px;
+	border-color: white !important;
+	border-radius: 5px;
+	color: white;
+	color: #fff !important;
+	color: #fff !important;
+	cursor: pointer;
+	cursor: pointer;
+	display: inline-block;
+	display: inline-block;
+	font-weight: normal;
+	font-size: 14px;
+	font-size: 18px;
+	font-family: TradeGothic, Impact, sans-serif;
+	font-size: 21px;
+	font-weight: 400;
+	letter-spacing: 1px;
+	line-height: 1.428571429;
+	line-height: 1.33;
+	line-height: 1.333em;
+	margin-bottom: 0;
+	margin-left: 0;
+	margin-right: 0;
+	margin-top: 0;
+	padding: 6px 12px;
+	padding: 10px 16px;
+	padding-bottom: 10px;
+	padding-left: 50px;
+	padding-right: 50px;
+	padding-top: 10px;
+	text-align: center;
+	text-align: center;
+	text-transform: uppercase;
+	text-shadow: none;
+	transition: all 0.5s ease 0s;
+	user-select: none;
+	vertical-align: middle;
+	vertical-align: middle;
+	white-space: nowrap;
+}
+
+.btn:focus {
+	color: #333333;
+	outline: thin dotted;
+	outline: 5px auto -webkit-focus-ring-color;
+	outline-offset: -2px;
+	text-decoration: none;
+}
+
+.button-primary:focus {
+	background-color: #3071a9;
+	border-color: #285e8e;
+	color: #333333;
+	color: white;
+	outline: thin dotted;
+	outline: 5px auto -webkit-focus-ring-color;
+	outline-offset: -2px;
+	text-decoration: none;
+}
+
+.btn:active:focus {
+	outline: thin dotted;
+	outline: 5px auto -webkit-focus-ring-color;
+	outline-offset: -2px;
+}
+
+.button-primary:active:focus {
+	outline: thin dotted;
+	outline: 5px auto -webkit-focus-ring-color;
+	outline-offset: -2px;
+}
+
+.btn:hover {
+	color: #333333;
+	text-decoration: none;
+}
+
+.button-primary:hover {
+	background-color: #3071a9;
+	background: #000;
+	border-color: #285e8e;
+	color: #333333;
+	color: white;
+	color: #fff !important;
+	text-decoration: none;
+}
+
+.btn:active {
+	outline: 0;
+	background-image: none;
+	-webkit-box-shadow: inset 0 3px 5px rgba(0,0,0,0.125);
+	box-shadow: inset 0 3px 5px rgba(0,0,0,0.125);
+}
+
+.button-primary:active {
+	-webkit-box-shadow: inset 0 3px 5px rgba(0,0,0,0.125);
+	background-image: none;
+	background-color: #3071a9;
+	background-image: none;
+	border-color: #285e8e;
+	box-shadow: inset 0 3px 5px rgba(0,0,0,0.125);
+	color: white;
+	outline: 0;
+}
+
+.btn-default {
+	color: #333333;
+	background-color: white;
+	border-color: #cccccc;
+}
+
+.btn-default:hover {
+	color: #333333;
+	background-color: #e6e6e6;
+	border-color: #adadad;
+}
+
+.btn-default:focus {
+	color: #333333;
+	background-color: #e6e6e6;
+	border-color: #adadad;
+}
+
+.btn-default:active {
+	background-color: #e6e6e6;
+	background-image: none;
+	border-color: #adadad;
+	color: #333333;
+}
+
+.fade {
+	opacity: 0;
+	-webkit-transition: opacity 0.15s linear;
+	-o-transition: opacity 0.15s linear;
+	transition: opacity 0.15s linear;
+}
+
+.close {
+	-webkit-border-radius: 12px;
+	-moz-border-radius: 12px;
+	-moz-box-shadow: 1px 1px 3px #000;
+	-webkit-box-shadow: 1px 1px 3px #000;
+	background: #eb3b45;
+	border-radius: 12px;
+	box-shadow: 1px 1px 3px #000;
+	color: black;
+	color: #FFFFFF !important;
+	filter: alpha(opacity=20);
+	float: right;
+	font-size: 21px;
+	font-weight: bold;
+	font-weight: bold;
+	line-height: 1;
+	line-height: 25px;
+	opacity: 0.2;
+	position: absolute;
+	right: -12px;
+	text-shadow: 0 1px 0 white;
+	text-align: center;
+	text-decoration: none;
+	top: -10px;
+	width: 24px;
+}
+
+.close:hover {
+	background: #000;
+	color: black;
+	cursor: pointer;
+	filter: alpha(opacity=50);
+	opacity: 0.5;
+	text-decoration: none;
+}
+
+.close:focus {
+	color: black;
+	text-decoration: none;
+	cursor: pointer;
+	opacity: 0.5;
+	filter: alpha(opacity=50);
+}
+
+button.close {
+	padding: 0;
+	cursor: pointer;
+	background: transparent;
+	border: 0;
+	-webkit-appearance: none;
+}
+
+.modal {
+	display: none;
+	overflow: auto;
+	overflow-y: scroll;
+	position: fixed;
+	top: 0;
+	right: 0;
+	bottom: 0;
+	left: 0;
+	z-index: 1050;
+	-webkit-overflow-scrolling: touch;
+	outline: 0;
+}
+
+.modal.fade .modal-dialog {
+	-webkit-transform: translate(0, -25%);
+	-ms-transform: translate(0, -25%);
+	-o-transform: translate(0, -25%);
+	transform: translate(0, -25%);
+	-webkit-transition: -webkit-transform 0.3s ease-out;
+	-moz-transition: -moz-transform 0.3s ease-out;
+	-o-transition: -o-transform 0.3s ease-out;
+	transition: transform 0.3s ease-out;
+}
+
+.modal-dialog {
+	position: relative;
+	width: auto;
+	margin: 10px;
+}
+
+.modal-content {
+	position: relative;
+	background-color: white;
+	border: 1px solid #999999;
+	border: 1px solid rgba(0,0,0,0.2);
+	border-radius: 6px;
+	-webkit-box-shadow: 0 3px 9px rgba(0,0,0,0.5);
+	box-shadow: 0 3px 9px rgba(0,0,0,0.5);
+	background-clip: padding-box;
+	outline: 0;
+}
+
+.modal-header {
+	padding: 15px;
+	border-bottom: 1px solid #e5e5e5;
+	min-height: 16.428571429px;
+}
+
+.modal-header .close {
+	margin-top: -2px;
+}
+
+.modal-title {
+	margin: 0;
+	line-height: 1.428571429;
+}
+
+.modal-body {
+	position: relative;
+	padding: 15px;
+}
+
+.modal-footer {
+	padding: 15px;
+	text-align: right;
+	border-top: 1px solid #e5e5e5;
+}
+
+.modal-footer:before {
+	content: " ";
+	display: table;
+}
+
+.modal-footer:after {
+	clear: both;
+	content: " ";
+	display: table;
+}
+
+@media (min-width: 768px) {
+	.modal-dialog {
+		width: 600px;
+		margin: 30px auto;
+	}
+	.modal-content {
+		-webkit-box-shadow: 0 5px 15px rgba(0,0,0,0.5);
+		box-shadow: 0 5px 15px rgba(0,0,0,0.5);
+	}
+	.modal-sm {
+		width: 300px;
+	}
+}
+
+@media (max-width: 991px) {
+	h2 {
+		font-size: 24px;
+	}
+}
+
+.clear {
+	clear: both;
+	clear: both;
+}
+
+*:target::before {
+	height: 45px;
+	display: block;
+	content: '\a0';
+}
+
+.public-container {
+	padding: 0px;
+}
+
+.plank {
+	color: #333333;
+	width: 100%;
+}
+
+.plank .section-container>section>div:not(.no-pad) {
+	padding: 2.25em 0.938em 1.5em 0.938em;
+}
+
+.plank.plain-md {
+	background-color: #e6e6e6;
+}
+
+.plank.plain-md a {
+	color: #0071bc;
+}
+
+.plank.plain-md .section-container {
+	background-color: #f2f2f2;
+}
+
+div {
+	margin: 0;
+	padding: 0;
+	border: 0;
+	font-size: 100%;
+	font: inherit;
+	vertical-align: baseline;
+}
+
+span {
+	margin: 0;
+	padding: 0;
+	border: 0;
+	font-size: 100%;
+	font: inherit;
+	vertical-align: baseline;
+}
+
+li {
+	margin: 0;
+	padding: 0;
+	border: 0;
+	font-size: 100%;
+	font: inherit;
+	vertical-align: baseline;
+}
+
+form {
+	border: 0;
+	font-size: 100%;
+	font: inherit;
+	margin: 0;
+	margin: 0;
+	padding: 0;
+	vertical-align: baseline;
+}
+
+.upperheader_red {
+	background: #eb3b45;
+	padding-bottom: 8px;
+	padding-left: 0;
+	padding-right: 0;
+	padding-top: 8px;
+}
+
+.upperheader_red h4 {
+	color: #fff;
+	text-align: right;
+	margin: 0;
+	font-size: 1em;
+}
+
+.upperheader_red .container {
+	max-width: 1000px;
+	margin: 0 auto;
+	padding-right: 1.3em;
+	padding-left: 1.3em;
+}
+
+.upperheader_red .social a {
+	display: inline-block;
+	margin-left: 4px;
+	vertical-align: sub;
+}
+
+.upperheader_red a.facebook_icon {
+	background: url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAoAAAASCAMAAABVab95AAAAXVBMVEX///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////8/beDHAAAAHnRSTlMAAQMFCAsMIS8xSElMT2CVl6iqrLC+4+vs8PH0/P0OEXnGAAAAUklEQVQIma3LWRKAIAwD0LpvCFbchd7/mAYd8QLmJ286DRHSm9HaLGiQkByqJLJDT1qnoAIV3YkstgM89zWh8hnJgqvzgHfz+9t+s9/YMHONvgAQqAmx4EohrQAAAABJRU5ErkJggg==) no-repeat center center;
+	width: 18px;
+	height: 18px;
+}
+
+.upperheader_red a.ig_icon {
+	background: url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABQAAAAUCAMAAAC6V+0/AAABC1BMVEX///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////+/RJMjAAAAWHRSTlMAAQMEBQYHCQwNFRYbHCYqKywvMDI0NzpFR0xRUlNYWVxhZ2xwcnWEhoiJi42Oj5OUlZidnqSlrK+wsrS2t7i5vL7Fy8zQ1dfY3t/j6Onq6+zz9/j6+/3+BwFCSAAAANNJREFUGJVjYMABeCWl4ECSGyKmHRaBBELUQGKKSCJ+dnauERJAQXskQWsGBrkIE6CgM7qgBVDQBUnQWVpWL8ISIeigpAzVAxYMMjV1jzAEspgsI1xMzSCCPgwMjsGcIIfwRRgzMMMF3bzALmYMt0YStA3lAgmKRBggCSpEmLMwMHA4RYgjCTJaRXho6npH6DMgCTKwagRGRPirMsIEnX3AlrAJCTCDaGawj2xCeZDDUTTCCEjKRHhqqcOBjm+YGEhOJRA5PAPkITrYBYXhgB/oNAYAy6U/Q/A3iDYAAAAASUVORK5CYII=) no-repeat center center;
+	width: 18px;
+	height: 18px;
+}
+
+.upperheader_red a.twitter_icon {
+	background: url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABIAAAAOCAQAAACI04Q8AAAAzUlEQVQokWP4z4AD8iDY2BXY/r/6f9V/NVRFuv9b/yvAlYj+f/P///8v/5f8F0FWxPr/7P+//9f/NwPzpv6HgUv/OZGtK/v/Cyy8Gmjit/8IUIisKO7/H6jwh//I4O7/zv9+MEWMQBf8+48NbP/vivBR8f97WJQd+W/znwXZ4+VYzAmGuIkdrkjq/0k0JXtgQaAM9IHVf63/gf+3oik5918YEU7qwFBCB3//z0REDIRi/h8B9MUXqIJb//v/ayJHE7LDGf+L/5eBhDEqBABnBWaorqWnYQAAAABJRU5ErkJggg==) no-repeat center center;
+	width: 18px;
+	height: 18px;
+}
+
+.upperheader_red a.mail_icon {
+	background: url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABQAAAAOCAQAAACFzfR7AAAA60lEQVQokY2Qv0uCYRDHjxAkRUlIEEIQ00kw/AsEiSb7Y/Q/EHQTh0gXhYbAKLCtQKem1uptaVBweqfMFifDT/dkvvmL9HvLfe8+x3P3CFtKGG3FjYQjehuxLkmhQZD7f7E7fJyJJh32KDBZC02046dtdjSyCHPK5wo2JEucN5PKb8kmRYzXBczSSoaPqRGnXMWFlyvHN9Xt8DCzM7CFm1ttesgz1sgpds2NnvE0D3bYVcjomQhpjSgvP/6S/b8dH3XuwnnynWNOGDi+zgF9A1oEqC0c8aUxr3MOsYUQlZVvWVaZhFDaiBkVvwE8xABK59IZmQAAAABJRU5ErkJggg==) no-repeat center center;
+	width: 18px;
+	height: 18px;
+}
+
+#topheader {
+	background-color: #ffffff;
+	width: 100%;
+	height: 60px;
+	position: relative;
+	padding: 8px 0;
+	max-width: 1000px;
+	margin: 0 auto;
+	padding-right: 1.3em;
+	padding-left: 1.3em;
+}
+
+#blogo {
+	float: left;
+	width: 185px;
+	height: 40px;
+}
+
+#footer_menu {
+	max-width: 980px;
+	margin: 0 auto;
+}
+
+#footer_bottom.braven_section {
+	background: #262426;
+}
+
+#footer_menu .footer_widget {
+	float: left;
+	width: 25%;
+}
+
+.fb_fico a {
+	background: url(data:image/png;base64,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) no-repeat 0 center;
+	opacity: .4;
+	padding-left: 25px;
+	color: #fff !important;
+}
+
+.tw_fico a {
+	background: url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABIAAAASCAQAAAD8x0bcAAABU0lEQVQokXWSPUsDQRCGN2osJUoarQTBE0Q5tNE6IQEhhNNoY6sQ8B9YiIVFMPgRtbHUGNEfYSUowVKDsVBiZ4r4DXY+zh57lwvEHbjdnXludvedUShjHSxQokpd7J4T5gl5MQ+ZpCyhHWJYYnEKgl9hB6E0r+SI+Fm19ZGnQcqDJvhkuQXwLMuHzqbo5obNtoi2bblGWMl1n+iRbYiwCQyxJNn73XWEGnOKc6GVC+XIyNzJLfDNhvllj1Mlr4j5qX85Yk2+eqSNN0FFiSrDZrtOc7wxaLwW9SA0KiFvXPhXt3jRx8V9xypfLvLDtO9L6uPO2DXbKQ5d5BEnIMI+JSUvqhmtB1gUUR2iAaSXZxwl6pTZ+lfMAtd06YUt4mfbIiu8M+4VOCUFzktJg0BU8jeYCbaKLY1RFXUTjIglOeCBS8Za+0mXJUORitt0dxwz28z6B1ASn4uFLqeWAAAAAElFTkSuQmCC) no-repeat 0 center;
+	opacity: .4;
+	padding-left: 25px;
+	color: #fff !important;
+}
+
+.blog_fico a {
+	background: url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAA4AAAAQCAQAAACMnYaxAAAAxklEQVQYlV3QsQpBURjA8SsLE4My0ZVsKBtlUYpMHsAjsJjuAygjyWhQbPIGshGLhZ1ksVtE/Z17z43vOP863c6vTvd8Fg3u/K8jKSwsixMPRvRES8VjjTc67ofRmjk1ci42vYOCOtBlmKq9zUZjjKwo7ONZYxlHlPDxojFPSxQ30aYqiphYZyhKmxhSv/QraGLz+wz5FA+dvxEE2DHTuOfFgoloq8bX15hjpeYrO6pLowxcdEtSNCrR5clBo81BXf42ulL5AOzyS6X+YSCQAAAAAElFTkSuQmCC) no-repeat 0 center;
+	opacity: .4;
+	padding-left: 25px;
+	color: #fff !important;
+}
+
+.fb_fico a:hover {
+	opacity: 1;
+}
+
+.tw_fico a:hover {
+	opacity: 1;
+}
+
+.blog_fico a:hover {
+	opacity: 1;
+}
+
+.braven-cc {
+	border-top: 1px solid #71716c;
+	padding: 20px 0 0;
+	text-align: center;
+	color: #71716c;
+}
+
+.braven-cc a {
+	color: #71716c;
+}
+
+.braven-cc a:hover {
+	color: #fff;
+}
+
+.info_footer_link:before {
+	content: 'Contact us:';
+	display: block;
+}
+
+.footer_widget {
+	background-color: none;
+	color: #71716c;
+	font-size: 16px;
+	-webkit-hyphens: auto;
+	-moz-hyphens: auto;
+	-ms-hyphens: auto;
+	hyphens: auto;
+	margin: 0 0 0px;
+	padding: 20px;
+	padding-left: 0;
+	padding-right: 0;
+	word-wrap: break-word;
+}
+
+.footer_widget .footer-title {
+	font-size: 18px;
+	margin: 0 0 10px;
+	color: #fff;
+}
+
+.footer_widget ul {
+	list-style-type: none;
+	margin: 0;
+	padding: 0;
+}
+
+.footer_widget li {
+	padding: 5px 0;
+}
+
+.footer_widget a {
+	color: #71716c;
+}
+
+.footer_widget a:visited {
+	color: #71716c;
+}
+
+.footer_widget a:hover {
+	color: #fff;
+	text-decoration: none;
+}
+
+.braven-widget-last {
+}
+
+.braven_section {
+	padding: 30px 20px;
+}
+
+button.btn {
+	border: 1px solid #111;
+	-webkit-border-radius: 5px;
+	-moz-border-radius: 5px;
+	border-radius: 5px;
+	color: #111 !important;
+	cursor: pointer;
+	display: inline-block;
+	text-align: center;
+	vertical-align: middle;
+	font-family: TradeGothic, Impact, sans-serif;
+	font-weight: 400;
+	font-size: 21px;
+	letter-spacing: 1px;
+	line-height: 1.333em;
+	margin-left: 0;
+	margin-right: 0;
+	margin-top: 0;
+	padding-bottom: 10px;
+	padding-left: 50px;
+	padding-right: 50px;
+	padding-top: 10px;
+	text-transform: uppercase;
+	text-shadow: none;
+	transition: all 0.5s ease 0s;
+}
+
+button.btn:hover {
+	background: #000000;
+	color: #fff !important;
+}
+
+@media only screen and (max-width: 980px) {
+	.footer_widget .footer-title {
+		font-size: 1em;
+	}
+}
+
+@media only screen and (max-width: 650px) {
+	.braven_section {
+		padding-bottom: 5px;
+		padding-left: 2%;
+		padding-right: 2%;
+		padding-top: 15px;
+	}
+	ul {
+		padding-left: 14px;
+	}
+	#footer_menu {
+		max-width: 400px;
+		margin: 0 auto;
+	}
+	#footer_menu .footer_widget {
+		margin: 0 auto;
+		width: 50%;
+		padding-left: 4px;
+		padding-right: 4px;
+	}
+}
+
+nav ul {
+	list-style: none;
+	list-style-image: none;
+}
+
+li > ul {
+	margin: 0;
+}
+
+.clear:after {
+	clear: both;
+	content: "";
+	display: table;
+}
+
+.clear:before {
+	content: "";
+	display: table;
+}
+
+@media (max-width: 643px) {
+	.upperheader_red {
+		display: none;
+	}
+
+	main > .plank {
+		padding-top: 0px !important;
+	}
+
+	main > .plank .section-container > section > div.col-md-4 {
+		padding-top: 4px;
+	}
+
+	main input.button-primary {
+		width: 100%;
+	}
+
+	/* hide everything under it too because we want to keep it simple on phone,
+	   they can always use the hot dog menu */
+	form ~ * {
+		display: none;
+	}
+}
+
+@media print {
+	body {
+		background: none !important;
+		color: #000;
+		font-size: 10pt;
+	}
+}
diff --git a/public/favicon.ico b/public/favicon.ico
new file mode 100644
index 00000000..359d79e9
Binary files /dev/null and b/public/favicon.ico differ
diff --git a/rubycas-server.gemspec b/rubycas-server.gemspec
index 2076d106..3044b205 100644
--- a/rubycas-server.gemspec
+++ b/rubycas-server.gemspec
@@ -26,13 +26,14 @@ $gemspec = Gem::Specification.new do |s|
   s.has_rdoc = true
   s.post_install_message = "For more information on RubyCAS-Server, see http://rubycas.github.com"
 
+  s.add_dependency("pg", "0.17.1")
   s.add_dependency("activerecord", ">= 2.3.12", "< 4.0")
   s.add_dependency("activesupport", ">= 2.3.12", "< 4.0")
   s.add_dependency("sinatra", "~> 1.0")
   s.add_dependency("sinatra-r18n", '~> 1.1.0')
   s.add_dependency("crypt-isaac", "~> 0.9.1")
 
-  s.add_development_dependency("rack-test")
+  s.add_development_dependency("rack-test",'0.6.3')
   s.add_development_dependency("capybara", '1.1.2')
   s.add_development_dependency("rspec")
   s.add_development_dependency("rspec-core")
@@ -41,8 +42,10 @@ $gemspec = Gem::Specification.new do |s|
   s.add_development_dependency("appraisal", "~> 0.4.1")
   s.add_development_dependency("guard", "~> 1.4.0")
   s.add_development_dependency("guard-rspec", "2.0.0")
+  s.add_development_dependency("public_suffix", "1.4.3") # Staging and prod run Ruby 1.9.3. This is the last version supported for that version of ruby, so pin it.
+  #s.add_development_dependency("public_suffix", "3.1.1") # If we upgrade to Ruby 2.1, use this version. This is a dependency of webmock below (through addressable). Newer versions require Ruby 2.3 or higher.
   s.add_development_dependency("webmock", "~> 1.8")
-  s.add_development_dependency("nokogiri", "~> 1.3")
+  s.add_development_dependency("nokogiri", "1.6.3.1")
 
   # pull in os specific FS monitoring lib for guard
   case RUBY_PLATFORM