tsai
/
abp-next-admin
mirror of https://github.com/colinin/abp-next-admin.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

enhance encryption and decryption security

pull/84/head
cKey 5 years ago
parent
074c3b2901
commit
eba4d781dc
7 changed files with 84 additions and 22 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 18
      aspnet-core/services/account/AuthServer.Host/AuthIdentityServerModule.cs
  2. 14
      aspnet-core/services/admin/LINGYUN.Abp.BackendAdmin.HttpApi.Host/BackendAdminHostModule.cs
  3. 18
      aspnet-core/services/apigateway/LINGYUN.ApiGateway.Host/ApiGatewayHostModule.cs
  4. 14
      aspnet-core/services/apigateway/LINGYUN.ApiGateway.HttpApi.Host/ApiGatewayHttpApiHostModule.cs
  5. 14
      aspnet-core/services/identity-server/LINGYUN.Abp.IdentityServer4.HttpApi.Host/AbpIdentityServerAdminHttpApiHostModule.cs
  6. 14
      aspnet-core/services/messages/LINGYUN.Abp.MessageService.HttpApi.Host/AbpMessageServiceHttpApiHostModule.cs
  7. 14
      aspnet-core/services/platform/LINGYUN.Platform.HttpApi.Host/AppPlatformHttpApiHostModule.cs

18
aspnet-core/services/account/AuthServer.Host/AuthIdentityServerModule.cs
View File

@ -77,10 +77,6 @@ namespace AuthServer.Host
}) })
.UseDashboard(); .UseDashboard();
}); });
PreConfigure<IIdentityServerBuilder>(builder =>
{
});
} }
public override void ConfigureServices(ServiceConfigurationContext context) public override void ConfigureServices(ServiceConfigurationContext context)
@ -96,9 +92,17 @@ namespace AuthServer.Host
// 加解密 // 加解密
Configure<AbpStringEncryptionOptions>(options => Configure<AbpStringEncryptionOptions>(options =>
{ {
options.DefaultPassPhrase = "s46c5q55nxpeS8Ra"; var encryptionConfiguration = configuration.GetSection("Encryption");
options.InitVectorBytes = Encoding.ASCII.GetBytes("s83ng0abvd02js84"); if (encryptionConfiguration.Exists())
options.DefaultSalt = Encoding.ASCII.GetBytes("sf&5)s3#"); {
options.DefaultPassPhrase = encryptionConfiguration["PassPhrase"] ?? options.DefaultPassPhrase;
options.DefaultSalt = encryptionConfiguration.GetSection("Salt").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["Salt"])
: options.DefaultSalt;
options.InitVectorBytes = encryptionConfiguration.GetSection("InitVector").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["InitVector"])
: options.InitVectorBytes;
}
}); });
Configure<AbpDistributedCacheOptions>(options => Configure<AbpDistributedCacheOptions>(options =>

14
aspnet-core/services/admin/LINGYUN.Abp.BackendAdmin.HttpApi.Host/BackendAdminHostModule.cs
View File

@ -122,9 +122,17 @@ namespace LINGYUN.Abp.BackendAdmin
// 加解密 // 加解密
Configure<AbpStringEncryptionOptions>(options => Configure<AbpStringEncryptionOptions>(options =>
{ {
options.DefaultPassPhrase = "s46c5q55nxpeS8Ra"; var encryptionConfiguration = configuration.GetSection("Encryption");
options.InitVectorBytes = Encoding.ASCII.GetBytes("s83ng0abvd02js84"); if (encryptionConfiguration.Exists())
options.DefaultSalt = Encoding.ASCII.GetBytes("sf&5)s3#"); {
options.DefaultPassPhrase = encryptionConfiguration["PassPhrase"] ?? options.DefaultPassPhrase;
options.DefaultSalt = encryptionConfiguration.GetSection("Salt").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["Salt"])
: options.DefaultSalt;
options.InitVectorBytes = encryptionConfiguration.GetSection("InitVector").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["InitVector"])
: options.InitVectorBytes;
}
}); });
Configure<PermissionManagementOptions>(options => Configure<PermissionManagementOptions>(options =>

18
aspnet-core/services/apigateway/LINGYUN.ApiGateway.Host/ApiGatewayHostModule.cs
View File

@ -11,6 +11,7 @@ using Ocelot.Middleware.Multiplexer;
using Ocelot.Provider.Polly; using Ocelot.Provider.Polly;
using StackExchange.Redis; using StackExchange.Redis;
using System; using System;
using System.Text;
using Volo.Abp; using Volo.Abp;
using Volo.Abp.AspNetCore; using Volo.Abp.AspNetCore;
using Volo.Abp.Autofac; using Volo.Abp.Autofac;
@ -20,6 +21,7 @@ using Volo.Abp.Caching.StackExchangeRedis;
using Volo.Abp.Http.Client.IdentityModel; using Volo.Abp.Http.Client.IdentityModel;
using Volo.Abp.IdentityModel; using Volo.Abp.IdentityModel;
using Volo.Abp.Modularity; using Volo.Abp.Modularity;
using Volo.Abp.Security.Encryption;
namespace LINGYUN.ApiGateway namespace LINGYUN.ApiGateway
{ {
@ -100,6 +102,22 @@ namespace LINGYUN.ApiGateway
options.InstanceName = configuration["Redis:InstanceName"]; options.InstanceName = configuration["Redis:InstanceName"];
}); });
// 加解密
Configure<AbpStringEncryptionOptions>(options =>
{
var encryptionConfiguration = configuration.GetSection("Encryption");
if (encryptionConfiguration.Exists())
{
options.DefaultPassPhrase = encryptionConfiguration["PassPhrase"] ?? options.DefaultPassPhrase;
options.DefaultSalt = encryptionConfiguration.GetSection("Salt").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["Salt"])
: options.DefaultSalt;
options.InitVectorBytes = encryptionConfiguration.GetSection("InitVector").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["InitVector"])
: options.InitVectorBytes;
}
});
Configure<IdentityModelHttpRequestMessageOptions>(options => Configure<IdentityModelHttpRequestMessageOptions>(options =>
{ {
// See https://github.com/abpframework/abp/pull/4564 // See https://github.com/abpframework/abp/pull/4564

14
aspnet-core/services/apigateway/LINGYUN.ApiGateway.HttpApi.Host/ApiGatewayHttpApiHostModule.cs
View File

@ -77,9 +77,17 @@ namespace LINGYUN.ApiGateway
// 加解密 // 加解密
Configure<AbpStringEncryptionOptions>(options => Configure<AbpStringEncryptionOptions>(options =>
{ {
options.DefaultPassPhrase = "s46c5q55nxpeS8Ra"; var encryptionConfiguration = configuration.GetSection("Encryption");
options.InitVectorBytes = Encoding.ASCII.GetBytes("s83ng0abvd02js84"); if (encryptionConfiguration.Exists())
options.DefaultSalt = Encoding.ASCII.GetBytes("sf&5)s3#"); {
options.DefaultPassPhrase = encryptionConfiguration["PassPhrase"] ?? options.DefaultPassPhrase;
options.DefaultSalt = encryptionConfiguration.GetSection("Salt").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["Salt"])
: options.DefaultSalt;
options.InitVectorBytes = encryptionConfiguration.GetSection("InitVector").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["InitVector"])
: options.InitVectorBytes;
}
}); });
Configure<AbpDistributedCacheOptions>(options => Configure<AbpDistributedCacheOptions>(options =>

14
aspnet-core/services/identity-server/LINGYUN.Abp.IdentityServer4.HttpApi.Host/AbpIdentityServerAdminHttpApiHostModule.cs
View File

@ -102,9 +102,17 @@ namespace LINGYUN.Abp.IdentityServer4
// 加解密 // 加解密
Configure<AbpStringEncryptionOptions>(options => Configure<AbpStringEncryptionOptions>(options =>
{ {
options.DefaultPassPhrase = "s46c5q55nxpeS8Ra"; var encryptionConfiguration = configuration.GetSection("Encryption");
options.InitVectorBytes = Encoding.ASCII.GetBytes("s83ng0abvd02js84"); if (encryptionConfiguration.Exists())
options.DefaultSalt = Encoding.ASCII.GetBytes("sf&5)s3#"); {
options.DefaultPassPhrase = encryptionConfiguration["PassPhrase"] ?? options.DefaultPassPhrase;
options.DefaultSalt = encryptionConfiguration.GetSection("Salt").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["Salt"])
: options.DefaultSalt;
options.InitVectorBytes = encryptionConfiguration.GetSection("InitVector").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["InitVector"])
: options.InitVectorBytes;
}
}); });
Configure<PermissionManagementOptions>(options => Configure<PermissionManagementOptions>(options =>

14
aspnet-core/services/messages/LINGYUN.Abp.MessageService.HttpApi.Host/AbpMessageServiceHttpApiHostModule.cs
View File

@ -99,9 +99,17 @@ namespace LINGYUN.Abp.MessageService
// 加解密 // 加解密
Configure<AbpStringEncryptionOptions>(options => Configure<AbpStringEncryptionOptions>(options =>
{ {
options.DefaultPassPhrase = "s46c5q55nxpeS8Ra"; var encryptionConfiguration = configuration.GetSection("Encryption");
options.InitVectorBytes = Encoding.ASCII.GetBytes("s83ng0abvd02js84"); if (encryptionConfiguration.Exists())
options.DefaultSalt = Encoding.ASCII.GetBytes("sf&5)s3#"); {
options.DefaultPassPhrase = encryptionConfiguration["PassPhrase"] ?? options.DefaultPassPhrase;
options.DefaultSalt = encryptionConfiguration.GetSection("Salt").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["Salt"])
: options.DefaultSalt;
options.InitVectorBytes = encryptionConfiguration.GetSection("InitVector").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["InitVector"])
: options.InitVectorBytes;
}
}); });
Configure<AbpExceptionHandlingOptions>(options => Configure<AbpExceptionHandlingOptions>(options =>

14
aspnet-core/services/platform/LINGYUN.Platform.HttpApi.Host/AppPlatformHttpApiHostModule.cs
View File

@ -112,9 +112,17 @@ namespace LINGYUN.Platform
// 加解密 // 加解密
Configure<AbpStringEncryptionOptions>(options => Configure<AbpStringEncryptionOptions>(options =>
{ {
options.DefaultPassPhrase = "s46c5q55nxpeS8Ra"; var encryptionConfiguration = configuration.GetSection("Encryption");
options.InitVectorBytes = Encoding.ASCII.GetBytes("s83ng0abvd02js84"); if (encryptionConfiguration.Exists())
options.DefaultSalt = Encoding.ASCII.GetBytes("sf&5)s3#"); {
options.DefaultPassPhrase = encryptionConfiguration["PassPhrase"] ?? options.DefaultPassPhrase;
options.DefaultSalt = encryptionConfiguration.GetSection("Salt").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["Salt"])
: options.DefaultSalt;
options.InitVectorBytes = encryptionConfiguration.GetSection("InitVector").Exists()
? Encoding.ASCII.GetBytes(encryptionConfiguration["InitVector"])
: options.InitVectorBytes;
}
}); });
// 自定义需要处理的异常 // 自定义需要处理的异常

Write Preview
Loading…
Cancel
Save