using DotNetCore.CAP; using LINGYUN.Abp.Identity.Session; using LINGYUN.Abp.IdentityServer.IdentityResources; using LINGYUN.Abp.Localization.CultureMap; using LINGYUN.Abp.Serilog.Enrichers.Application; using LINGYUN.Abp.Serilog.Enrichers.UniqueId; using LY.MicroService.IdentityServer.Authentication; using LY.MicroService.IdentityServer.IdentityResources; using Medallion.Threading; using Medallion.Threading.Redis; using Microsoft.AspNetCore.Authentication.Cookies; using Microsoft.AspNetCore.Builder; using Microsoft.AspNetCore.Cors; using Microsoft.AspNetCore.DataProtection; using Microsoft.AspNetCore.Hosting; using Microsoft.AspNetCore.Identity; using Microsoft.AspNetCore.Routing; using Microsoft.Extensions.Caching.StackExchangeRedis; using Microsoft.Extensions.Configuration; using Microsoft.Extensions.DependencyInjection; using Microsoft.Extensions.DependencyInjection.Extensions; using Microsoft.Extensions.Hosting; using Microsoft.IdentityModel.Logging; using OpenTelemetry.Metrics; using OpenTelemetry.Resources; using OpenTelemetry.Trace; using StackExchange.Redis; using System; using System.Collections.Generic; using System.IO; using System.Linq; using System.Security.Cryptography.X509Certificates; using System.Text.Encodings.Web; using System.Text.Unicode; using System.Threading.Tasks; using Volo.Abp.Account.Localization; using Volo.Abp.AspNetCore.Mvc; using Volo.Abp.AspNetCore.Mvc.UI.Bundling; using Volo.Abp.Auditing; using Volo.Abp.Caching; using Volo.Abp.EntityFrameworkCore; using Volo.Abp.FeatureManagement; using Volo.Abp.GlobalFeatures; using Volo.Abp.IdentityServer; using Volo.Abp.Json; using Volo.Abp.Json.SystemTextJson; using Volo.Abp.Localization; using Volo.Abp.MultiTenancy; using Volo.Abp.Security.Claims; using Volo.Abp.Threading; using Volo.Abp.UI.Navigation.Urls; using Volo.Abp.VirtualFileSystem; namespace LY.MicroService.IdentityServer; public partial class IdentityServerModule { public static string ApplicationName { get; set; } = "IdentityServer"; private static readonly OneTimeRunner OneTimeRunner = new OneTimeRunner(); private void PreConfigureFeature() { OneTimeRunner.Run(() => { GlobalFeatureManager.Instance.Modules.Editions().EnableAll(); }); } private void PreForwardedHeaders() { } private void PreConfigureApp(IConfiguration configuration) { AbpSerilogEnrichersConsts.ApplicationName = ApplicationName; PreConfigure(options => { // 以开放端口区别,应在0-31之间 options.SnowflakeIdOptions.WorkerId = 1; options.SnowflakeIdOptions.WorkerIdBits = 5; options.SnowflakeIdOptions.DatacenterId = 1; }); if (configuration.GetValue("App:ShowPii")) { IdentityModelEventSource.ShowPII = true; } } private void PreConfigureCAP(IConfiguration configuration) { PreConfigure(options => { options .UseMySql(mySqlOptions => { configuration.GetSection("CAP:MySql").Bind(mySqlOptions); }) .UseRabbitMQ(rabbitMQOptions => { configuration.GetSection("CAP:RabbitMQ").Bind(rabbitMQOptions); }) .UseDashboard(); }); } private void PreConfigureCertificate(IConfiguration configuration, IWebHostEnvironment environment) { var cerConfig = configuration.GetSection("Certificates"); if (environment.IsProduction() && cerConfig.Exists()) { // 开发环境下存在证书配置 // 且证书文件存在则使用自定义的证书文件来启动Ids服务器 var cerPath = Path.Combine(environment.ContentRootPath, cerConfig["CerPath"]); if (File.Exists(cerPath)) { PreConfigure(options => { options.AddDeveloperSigningCredential = false; }); var cer = new X509Certificate2(cerPath, cerConfig["Password"]); PreConfigure(builder => { builder.AddSigningCredential(cer); }); } } } private void ConfigureMvc(IServiceCollection services, IConfiguration configuration) { Configure(options => { options.ExposeIntegrationServices = true; }); Configure(options => { options.EndpointConfigureActions.Add((builder) => { builder.Endpoints.MapHealthChecks(configuration["App:HealthChecks"] ?? "/healthz"); }); }); services.AddHealthChecks(); } private void ConfigureDbContext() { Configure(options => { options.UseMySQL(); }); } private void ConfigureDataSeeder() { Configure(options => { options.Resources.Add(new CustomIdentityResources.AvatarUrl()); }); } private void ConfigureFeatureManagement() { Configure(options => { options.IsDynamicFeatureStoreEnabled = true; }); } private void ConfigureJsonSerializer(IConfiguration configuration) { // 统一时间日期格式 Configure(options => { var jsonConfiguration = configuration.GetSection("Json"); if (jsonConfiguration.Exists()) { jsonConfiguration.Bind(options); } }); // 中文序列化的编码问题 Configure(options => { options.JsonSerializerOptions.Encoder = JavaScriptEncoder.Create(UnicodeRanges.All); }); } private void ConfigureDistributedLocking(IServiceCollection services, IConfiguration configuration) { var distributedLockEnabled = configuration["DistributedLock:IsEnabled"]; if (distributedLockEnabled.IsNullOrEmpty() || bool.Parse(distributedLockEnabled)) { var redis = ConnectionMultiplexer.Connect(configuration["DistributedLock:Redis:Configuration"]); services.AddSingleton(_ => new RedisDistributedSynchronizationProvider(redis.GetDatabase())); } } private void ConfigureOpenTelemetry(IServiceCollection services, IConfiguration configuration) { var openTelemetryEnabled = configuration["OpenTelemetry:IsEnabled"]; if (openTelemetryEnabled.IsNullOrEmpty() || bool.Parse(openTelemetryEnabled)) { services.AddOpenTelemetry() .ConfigureResource(resource => { resource.AddService(ApplicationName); }) .WithTracing(tracing => { tracing.AddHttpClientInstrumentation(); tracing.AddAspNetCoreInstrumentation(); tracing.AddCapInstrumentation(); tracing.AddEntityFrameworkCoreInstrumentation(); tracing.AddSource(ApplicationName); var tracingOtlpEndpoint = configuration["OpenTelemetry:Otlp:Endpoint"]; if (!tracingOtlpEndpoint.IsNullOrWhiteSpace()) { tracing.AddOtlpExporter(otlpOptions => { otlpOptions.Endpoint = new Uri(tracingOtlpEndpoint); }); return; } var zipkinEndpoint = configuration["OpenTelemetry:ZipKin:Endpoint"]; if (!zipkinEndpoint.IsNullOrWhiteSpace()) { tracing.AddZipkinExporter(zipKinOptions => { zipKinOptions.Endpoint = new Uri(zipkinEndpoint); }); return; } }) .WithMetrics(metrics => { metrics.AddRuntimeInstrumentation(); metrics.AddHttpClientInstrumentation(); metrics.AddAspNetCoreInstrumentation(); }); } } private void ConfigureCaching(IConfiguration configuration) { Configure(options => { configuration.GetSection("DistributedCache").Bind(options); }); Configure(options => { var redisConfig = ConfigurationOptions.Parse(options.Configuration); options.ConfigurationOptions = redisConfig; options.InstanceName = configuration["Redis:InstanceName"]; }); } private void ConfigureIdentity(IConfiguration configuration) { // 增加配置文件定义,在新建租户时需要 Configure(options => { var identityConfiguration = configuration.GetSection("Identity"); if (identityConfiguration.Exists()) { identityConfiguration.Bind(options); } }); Configure(options => { options.IsDynamicClaimsEnabled = true; options.IsRemoteRefreshEnabled = false; }); } private void ConfigureVirtualFileSystem() { Configure(options => { options.FileSets.AddEmbedded("LY.MicroService.IdentityServer"); }); } private void ConfigureMvcUiTheme() { Configure(options => { //options.StyleBundles.Configure( // LeptonXLiteThemeBundles.Styles.Global, // bundle => // { // bundle.AddFiles("/global-styles.css"); // } //); }); } private void ConfigureLocalization() { Configure(options => { options.Languages.Add(new LanguageInfo("en", "en", "English")); options.Languages.Add(new LanguageInfo("zh-Hans", "zh-Hans", "简体中文")); options.Resources .Get() .AddVirtualJson("/Localization/Resources"); options.UsePersistence(); }); Configure(options => { var zhHansCultureMapInfo = new CultureMapInfo { TargetCulture = "zh-Hans", SourceCultures = new string[] { "zh", "zh_CN", "zh-CN" } }; options.CulturesMaps.Add(zhHansCultureMapInfo); options.UiCulturesMaps.Add(zhHansCultureMapInfo); }); } private void ConfigureAuditing(IConfiguration configuration) { Configure(options => { // options.IsEnabledForGetRequests = true; options.ApplicationName = ApplicationName; // 是否启用实体变更记录 var allEntitiesSelectorIsEnabled = configuration["Auditing:AllEntitiesSelector"]; if (allEntitiesSelectorIsEnabled.IsNullOrWhiteSpace() || (bool.TryParse(allEntitiesSelectorIsEnabled, out var enabled) && enabled)) { options.EntityHistorySelectors.AddAllEntities(); } }); } private void ConfigureUrls(IConfiguration configuration) { Configure(options => { var applicationConfiguration = configuration.GetSection("App:Urls:Applications"); foreach (var appConfig in applicationConfiguration.GetChildren()) { options.Applications[appConfig.Key].RootUrl = appConfig["RootUrl"]; foreach (var urlsConfig in appConfig.GetSection("Urls").GetChildren()) { options.Applications[appConfig.Key].Urls[urlsConfig.Key] = urlsConfig.Value; } } }); } private void ConfigureSecurity(IServiceCollection services, IConfiguration configuration, bool isDevelopment = false) { services .AddAuthentication() .AddJwtBearer(options => { configuration.GetSection("AuthServer").Bind(options); }); if (isDevelopment) { // services.AddAlwaysAllowAuthorization(); } if (!isDevelopment) { var redis = ConnectionMultiplexer.Connect(configuration["Redis:Configuration"]); services .AddDataProtection() .SetApplicationName("LINGYUN.Abp.Application") .PersistKeysToStackExchangeRedis(redis, "LINGYUN.Abp.Application:DataProtection:Protection-Keys"); } services.AddSameSiteCookiePolicy(); // 处理cookie中过时的ajax请求判断 services.Replace(ServiceDescriptor.Scoped()); Configure(options => { options.Events.OnSigningOut = (context) => { return Task.CompletedTask; }; }); } private void ConfigureMultiTenancy(IConfiguration configuration) { // 多租户 Configure(options => { options.IsEnabled = true; }); var tenantResolveCfg = configuration.GetSection("App:Domains"); if (tenantResolveCfg.Exists()) { Configure(options => { var domains = tenantResolveCfg.Get(); foreach (var domain in domains) { options.AddDomainTenantResolver(domain); } }); } } private void ConfigureCors(IServiceCollection services, IConfiguration configuration) { services.AddCors(options => { options.AddPolicy(DefaultCorsPolicyName, builder => { builder .WithOrigins( configuration["App:CorsOrigins"] .Split(",", StringSplitOptions.RemoveEmptyEntries) .Select(o => o.RemovePostFix("/")) .ToArray() ) .WithAbpExposedHeaders() .WithAbpWrapExposedHeaders() .SetIsOriginAllowedToAllowWildcardSubdomains() .AllowAnyHeader() .AllowAnyMethod() .AllowCredentials(); }); }); } }