186 lines
5.8 KiB
C#
186 lines
5.8 KiB
C#
using KonSoft.Admin;
|
||
using KonSoft.Admin.EntityFrameworkCore;
|
||
using KonSoft.Shared.Hosting.AspNetCore;
|
||
using KonSoft.Shared.Hosting.Microservices;
|
||
using KonSoft.Shared.Localization.Localization;
|
||
using Localization.Resources.AbpUi;
|
||
using Microsoft.AspNetCore.Builder;
|
||
using Microsoft.AspNetCore.Http;
|
||
using Microsoft.AspNetCore.HttpOverrides;
|
||
using Microsoft.Extensions.DependencyInjection;
|
||
using Microsoft.Extensions.Hosting;
|
||
using Volo.Abp;
|
||
using Volo.Abp.Account;
|
||
using Volo.Abp.Account.Localization;
|
||
using Volo.Abp.Account.Web;
|
||
using Volo.Abp.AspNetCore.Mvc.AntiForgery;
|
||
using Volo.Abp.AspNetCore.Mvc.UI.Bundling;
|
||
using Volo.Abp.AspNetCore.Mvc.UI.Theme.Basic;
|
||
using Volo.Abp.AspNetCore.Mvc.UI.Theme.Basic.Bundling;
|
||
using Volo.Abp.AspNetCore.Mvc.UI.Theme.Shared;
|
||
using Volo.Abp.Auditing;
|
||
using Volo.Abp.BackgroundJobs;
|
||
using Volo.Abp.Localization;
|
||
using Volo.Abp.Modularity;
|
||
using Volo.Abp.OpenIddict;
|
||
using Volo.Abp.Security.Claims;
|
||
|
||
namespace KonSoft;
|
||
|
||
[DependsOn(
|
||
typeof(AbpAccountWebOpenIddictModule),
|
||
typeof(AbpAccountApplicationModule),
|
||
typeof(AbpAccountHttpApiModule),
|
||
typeof(AdminApplicationModule),
|
||
typeof(AdminEntityFrameworkCoreModule),
|
||
typeof(AbpAspNetCoreMvcUiBasicThemeModule),
|
||
typeof(KonSoftSharedHostingMicroservicesModule)
|
||
)]
|
||
public class KonSoftAuthServerModule : AbpModule
|
||
{
|
||
public override void PreConfigureServices(ServiceConfigurationContext context)
|
||
{
|
||
var hostingEnvironment = context.Services.GetHostingEnvironment();
|
||
var configuration = context.Services.GetConfiguration();
|
||
|
||
PreConfigure<OpenIddictBuilder>(builder =>
|
||
{
|
||
builder.AddValidation(options =>
|
||
{
|
||
options.AddAudiences("KonSoft");
|
||
options.UseLocalServer();
|
||
options.UseAspNetCore();
|
||
});
|
||
});
|
||
|
||
if (!hostingEnvironment.IsDevelopment())
|
||
{
|
||
PreConfigure<AbpAntiForgeryOptions>(options =>
|
||
{
|
||
options.TokenCookie.SecurePolicy = CookieSecurePolicy.Always;
|
||
options.TokenCookie.SameSite = SameSiteMode.Lax;
|
||
});
|
||
|
||
PreConfigure<AbpOpenIddictAspNetCoreOptions>(options =>
|
||
{
|
||
options.AddDevelopmentEncryptionAndSigningCertificate = false;
|
||
});
|
||
|
||
PreConfigure<OpenIddictServerBuilder>(serverBuilder =>
|
||
{
|
||
serverBuilder.AddProductionEncryptionAndSigningCertificate("openiddict.pfx",
|
||
"59464dba-b66e-48cd-8b81-2e4a9c08c977");
|
||
});
|
||
}
|
||
}
|
||
|
||
public override void ConfigureServices(ServiceConfigurationContext context)
|
||
{
|
||
var hostingEnvironment = context.Services.GetHostingEnvironment();
|
||
var configuration = context.Services.GetConfiguration();
|
||
|
||
Configure<AbpLocalizationOptions>(options =>
|
||
{
|
||
options.Resources
|
||
.Get<KonSoftResource>()
|
||
.AddBaseTypes(
|
||
typeof(AbpUiResource),
|
||
typeof(AccountResource)
|
||
);
|
||
});
|
||
|
||
Configure<AbpBundlingOptions>(options =>
|
||
{
|
||
options.StyleBundles.Configure(
|
||
BasicThemeBundles.Styles.Global,
|
||
bundle => { bundle.AddFiles("/global-styles.css"); }
|
||
);
|
||
});
|
||
|
||
Configure<AbpAuditingOptions>(options =>
|
||
{
|
||
options.IsEnabledForGetRequests = true;
|
||
options.ApplicationName = "AuthServer";
|
||
});
|
||
|
||
Configure<AbpBackgroundJobOptions>(options => { options.IsJobExecutionEnabled = false; });
|
||
|
||
context.Services.Configure<AbpClaimsPrincipalFactoryOptions>(options =>
|
||
{
|
||
options.IsDynamicClaimsEnabled = true;
|
||
});
|
||
|
||
// <20><><EFBFBD><EFBFBD>ת<EFBFBD><D7AA>ͷ
|
||
context.Services.Configure<ForwardedHeadersOptions>(options =>
|
||
{
|
||
options.ForwardedHeaders = ForwardedHeaders.All;
|
||
options.KnownNetworks.Clear();
|
||
options.KnownProxies.Clear();
|
||
});
|
||
|
||
// <20><><EFBFBD><EFBFBD>Cookie<69><65><EFBFBD><EFBFBD>
|
||
context.Services.Configure<CookiePolicyOptions>(options =>
|
||
{
|
||
options.CheckConsentNeeded = context => false;
|
||
options.MinimumSameSitePolicy = SameSiteMode.Lax;
|
||
options.Secure = CookieSecurePolicy.Always;
|
||
});
|
||
|
||
// <20><><EFBFBD><EFBFBD>Ӧ<EFBFBD><D3A6>Cookie
|
||
context.Services.ConfigureApplicationCookie(options =>
|
||
{
|
||
options.Cookie.SecurePolicy = CookieSecurePolicy.Always;
|
||
options.Cookie.SameSite = SameSiteMode.Lax;
|
||
options.Cookie.HttpOnly = true;
|
||
});
|
||
|
||
// <20><><EFBFBD><EFBFBD><EFBFBD>ⲿ<EFBFBD><E2B2BF>֤Cookie
|
||
context.Services.ConfigureExternalCookie(options =>
|
||
{
|
||
options.Cookie.SecurePolicy = CookieSecurePolicy.Always;
|
||
options.Cookie.SameSite = SameSiteMode.Lax;
|
||
});
|
||
}
|
||
|
||
public override void OnApplicationInitialization(ApplicationInitializationContext context)
|
||
{
|
||
var app = context.GetApplicationBuilder();
|
||
var env = context.GetEnvironment();
|
||
|
||
if (env.IsDevelopment())
|
||
{
|
||
app.UseDeveloperExceptionPage();
|
||
}
|
||
|
||
app.UseForwardedHeaders(new ForwardedHeadersOptions
|
||
{
|
||
ForwardedHeaders = ForwardedHeaders.XForwardedFor | ForwardedHeaders.XForwardedProto
|
||
});
|
||
app.UseAbpRequestLocalization();
|
||
|
||
if (!env.IsDevelopment())
|
||
{
|
||
app.UseErrorPage();
|
||
}
|
||
|
||
app.UseCorrelationId();
|
||
app.UseStaticFiles();
|
||
app.UseRouting();
|
||
app.UseCors();
|
||
app.UseAuthentication();
|
||
app.UseAbpOpenIddictValidation();
|
||
|
||
if (KonSoftConsts.MultiTenancyEnabled)
|
||
{
|
||
app.UseMultiTenancy();
|
||
}
|
||
|
||
app.UseUnitOfWork();
|
||
app.UseDynamicClaims();
|
||
app.UseAuthorization();
|
||
|
||
app.UseAuditing();
|
||
app.UseAbpSerilogEnrichers();
|
||
app.UseConfiguredEndpoints();
|
||
}
|
||
} |