using DotNetCore.CAP; using LINGYUN.Abp.AspNetCore.HttpOverrides; using LINGYUN.Abp.EventBus.CAP; using LINGYUN.Abp.ExceptionHandling; using LINGYUN.Abp.ExceptionHandling.Emailing; using LINGYUN.Abp.LocalizationManagement.EntityFrameworkCore; using LINGYUN.Abp.MultiTenancy.DbFinder; using LINGYUN.Abp.Sms.Aliyun; using Microsoft.AspNetCore.Authentication.JwtBearer; using Microsoft.AspNetCore.Builder; using Microsoft.AspNetCore.DataProtection; using Microsoft.AspNetCore.Hosting; using Microsoft.AspNetCore.Identity; using Microsoft.Extensions.Caching.StackExchangeRedis; using Microsoft.Extensions.Configuration; using Microsoft.Extensions.DependencyInjection; using Microsoft.Extensions.Hosting; using Microsoft.OpenApi.Models; using StackExchange.Redis; using System; using System.Text; using Volo.Abp; using Volo.Abp.AspNetCore.Authentication.JwtBearer; using Volo.Abp.AspNetCore.Mvc.UI.MultiTenancy; using Volo.Abp.AspNetCore.Security.Claims; using Volo.Abp.Auditing; using Volo.Abp.AuditLogging.EntityFrameworkCore; using Volo.Abp.Authorization.Permissions; using Volo.Abp.Autofac; using Volo.Abp.Caching; using Volo.Abp.Caching.StackExchangeRedis; using Volo.Abp.Domain.Entities.Events.Distributed; using Volo.Abp.EntityFrameworkCore; using Volo.Abp.EntityFrameworkCore.MySQL; using Volo.Abp.Identity.Localization; using Volo.Abp.Json; using Volo.Abp.Localization; using Volo.Abp.Modularity; using Volo.Abp.MultiTenancy; using Volo.Abp.PermissionManagement; using Volo.Abp.PermissionManagement.EntityFrameworkCore; using Volo.Abp.Security.Claims; using Volo.Abp.Security.Encryption; using Volo.Abp.SettingManagement.EntityFrameworkCore; using Volo.Abp.TenantManagement.EntityFrameworkCore; using Volo.Abp.VirtualFileSystem; namespace LINGYUN.Abp.IdentityServer4 { [DependsOn( typeof(AbpAspNetCoreMvcUiMultiTenancyModule), typeof(LINGYUN.Abp.Account.AbpAccountApplicationModule), typeof(LINGYUN.Abp.Account.AbpAccountHttpApiModule), typeof(LINGYUN.Abp.Identity.AbpIdentityApplicationModule), typeof(LINGYUN.Abp.Identity.AbpIdentityHttpApiModule), typeof(LINGYUN.Abp.IdentityServer.AbpIdentityServerApplicationModule), typeof(LINGYUN.Abp.IdentityServer.AbpIdentityServerHttpApiModule), typeof(LINGYUN.Abp.Identity.EntityFrameworkCore.AbpIdentityEntityFrameworkCoreModule), typeof(LINGYUN.Abp.IdentityServer.EntityFrameworkCore.AbpIdentityServerEntityFrameworkCoreModule), typeof(AbpEntityFrameworkCoreMySQLModule), typeof(AbpAuditLoggingEntityFrameworkCoreModule), typeof(AbpTenantManagementEntityFrameworkCoreModule), typeof(AbpSettingManagementEntityFrameworkCoreModule), typeof(AbpPermissionManagementEntityFrameworkCoreModule), typeof(AbpLocalizationManagementEntityFrameworkCoreModule), typeof(AbpAspNetCoreAuthenticationJwtBearerModule), typeof(AbpEmailingExceptionHandlingModule), typeof(AbpCAPEventBusModule), typeof(AbpAliyunSmsModule), typeof(AbpDbFinderMultiTenancyModule), typeof(AbpCachingStackExchangeRedisModule), typeof(AbpAspNetCoreHttpOverridesModule), typeof(AbpAutofacModule) )] public class AbpIdentityServerAdminHttpApiHostModule : AbpModule { public override void PreConfigureServices(ServiceConfigurationContext context) { var configuration = context.Services.GetConfiguration(); PreConfigure(options => { options .UseMySql(configuration.GetConnectionString("Default")) .UseRabbitMQ(rabbitMQOptions => { configuration.GetSection("CAP:RabbitMQ").Bind(rabbitMQOptions); }) .UseDashboard(); }); PreConfigure(builder => { builder.AddDefaultTokenProviders(); }); } public override void ConfigureServices(ServiceConfigurationContext context) { var hostingEnvironment = context.Services.GetHostingEnvironment(); var configuration = hostingEnvironment.BuildConfiguration(); // 配置Ef Configure(options => { options.UseMySQL(); //if (hostingEnvironment.IsDevelopment()) //{ // options.PreConfigure(ctx => // { // ctx.DbContextOptions.EnableDetailedErrors(); // ctx.DbContextOptions.EnableSensitiveDataLogging(); // }); //} }); // 解决某些不支持类型的序列化 Configure(options => { // See: https://docs.abp.io/en/abp/4.0/Migration-Guides/Abp-4_0#always-use-the-newtonsoft-json options.UseHybridSerializer = false; }); // 中文序列化的编码问题 //Configure(options => //{ // options.JsonSerializerOptions.Encoder = JavaScriptEncoder.Create(UnicodeRanges.All); //}); // 加解密 Configure(options => { var encryptionConfiguration = configuration.GetSection("Encryption"); if (encryptionConfiguration.Exists()) { options.DefaultPassPhrase = encryptionConfiguration["PassPhrase"] ?? options.DefaultPassPhrase; options.DefaultSalt = encryptionConfiguration.GetSection("Salt").Exists() ? Encoding.ASCII.GetBytes(encryptionConfiguration["Salt"]) : options.DefaultSalt; options.InitVectorBytes = encryptionConfiguration.GetSection("InitVector").Exists() ? Encoding.ASCII.GetBytes(encryptionConfiguration["InitVector"]) : options.InitVectorBytes; } }); Configure(options => { // Rename IdentityServer.Client.ManagePermissions // See https://github.com/abpframework/abp/blob/dev/modules/identityserver/src/Volo.Abp.PermissionManagement.Domain.IdentityServer/Volo/Abp/PermissionManagement/IdentityServer/AbpPermissionManagementDomainIdentityServerModule.cs options.ProviderPolicies[ClientPermissionValueProvider.ProviderName] = LINGYUN.Abp.IdentityServer.AbpIdentityServerPermissions.Clients.ManagePermissions; }); // 自定义需要处理的异常 Configure(options => { // 加入需要处理的异常类型 options.Handlers.Add(); options.Handlers.Add(); options.Handlers.Add(); options.Handlers.Add(); options.Handlers.Add(); options.Handlers.Add(); options.Handlers.Add(); options.Handlers.Add(); }); // 自定义需要发送邮件通知的异常类型 Configure(options => { // 是否发送堆栈信息 options.SendStackTrace = true; }); Configure(options => { options.ApplicationName = "Identity-Server-Admin"; // 是否启用实体变更记录 var entitiesChangedConfig = configuration.GetSection("App:TrackingEntitiesChanged"); if (entitiesChangedConfig.Exists() && entitiesChangedConfig.Get()) { options .EntityHistorySelectors .AddAllEntities(); } }); Configure(options => { // 最好统一命名,不然某个缓存变动其他应用服务有例外发生 options.KeyPrefix = "LINGYUN.Abp.Application"; // 滑动过期30天 options.GlobalCacheEntryOptions.SlidingExpiration = TimeSpan.FromDays(30); // 绝对过期60天 options.GlobalCacheEntryOptions.AbsoluteExpiration = DateTimeOffset.Now.AddMinutes(60); }); Configure(options => { options.AutoEventSelectors.AddNamespace("Volo.Abp.Identity"); options.AutoEventSelectors.AddNamespace("Volo.Abp.IdentityServer"); }); Configure(options => { var redisConfig = ConfigurationOptions.Parse(options.Configuration); options.ConfigurationOptions = redisConfig; options.InstanceName = configuration["Redis:InstanceName"]; }); Configure(options => { options.FileSets.AddEmbedded("LINGYUN.Abp.IdentityServer4"); }); // 多租户 Configure(options => { options.IsEnabled = true; }); var tenantResolveCfg = configuration.GetSection("App:Domains"); if (tenantResolveCfg.Exists()) { Configure(options => { var domains = tenantResolveCfg.Get(); foreach (var domain in domains) { options.AddDomainTenantResolver(domain); } }); } // Swagger context.Services.AddSwaggerGen( options => { options.SwaggerDoc("v1", new OpenApiInfo { Title = "IdentityServer4 API", Version = "v1" }); options.DocInclusionPredicate((docName, description) => true); options.CustomSchemaIds(type => type.FullName); options.AddSecurityDefinition("Bearer", new OpenApiSecurityScheme { Description = "JWT Authorization header using the Bearer scheme. Example: \"Authorization: Bearer {token}\"", Name = "Authorization", In = ParameterLocation.Header, Scheme = "bearer", Type = SecuritySchemeType.Http, BearerFormat = "JWT" }); options.AddSecurityRequirement(new OpenApiSecurityRequirement { { new OpenApiSecurityScheme { Reference = new OpenApiReference { Type = ReferenceType.SecurityScheme, Id = "Bearer" } }, new string[] { } } }); }); // 支持本地化语言类型 Configure(options => { options.Languages.Add(new LanguageInfo("en", "en", "English")); options.Languages.Add(new LanguageInfo("zh-Hans", "zh-Hans", "简体中文")); options.Resources .Get() .AddVirtualJson("/LINGYUN/Abp/IdentityServer4/Localization"); options.Resources.AddDynamic(typeof(IdentityResource)); }); Configure(options => { options.Maps.TryAdd("name", () => AbpClaimTypes.UserName); }); context.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme) .AddJwtBearer(options => { options.Authority = configuration["AuthServer:Authority"]; options.RequireHttpsMetadata = false; options.Audience = configuration["AuthServer:ApiName"]; }); if (!hostingEnvironment.IsDevelopment()) { var redis = ConnectionMultiplexer.Connect(configuration["Redis:Configuration"]); context.Services .AddDataProtection() .PersistKeysToStackExchangeRedis(redis, "BackendAdmin-Protection-Keys"); } } public override void OnApplicationInitialization(ApplicationInitializationContext context) { var app = context.GetApplicationBuilder(); // http调用链 app.UseCorrelationId(); // 虚拟文件系统 app.UseStaticFiles(); // 本地化 app.UseAbpRequestLocalization(); //路由 app.UseRouting(); // 认证 app.UseAuthentication(); app.UseAbpClaimsMap(); // jwt app.UseJwtTokenMiddleware(); // 多租户 app.UseMultiTenancy(); // Swagger app.UseSwagger(); // Swagger可视化界面 app.UseSwaggerUI(options => { options.SwaggerEndpoint("/swagger/v1/swagger.json", "Support IdentityServer4 API"); }); // 审计日志 app.UseAuditing(); // 路由 app.UseConfiguredEndpoints(); } } }