Add XSRF-TOKEN to Swagger UI Requests

templates/app/aspnet-core/src/MyCompanyName.MyProjectName.Web.Host/MyCompanyName.MyProjectName.Web.Host.csproj

@@ -43,6 +43,11 @@
     <Content Remove="Logs\**" />
     <EmbeddedResource Remove="Logs\**" />
     <None Remove="Logs\**" />
+    <Content Remove="wwwroot\swagger\ui\index.html" />
+    <EmbeddedResource Include="wwwroot\swagger\ui\index.html">
+      <ExcludeFromSingleFile>true</ExcludeFromSingleFile>
+      <CopyToPublishDirectory>PreserveNewest</CopyToPublishDirectory>
+    </EmbeddedResource>
   </ItemGroup>
 
   <ItemGroup>

templates/app/aspnet-core/src/MyCompanyName.MyProjectName.Web.Host/MyProjectNameWebModule.cs

@@ -1,6 +1,7 @@
 using System;
 using System.IO;
 using System.Linq;
+using System.Reflection;
 using System.Threading.Tasks;
 using Microsoft.AspNetCore.Authentication.OAuth.Claims;
 using Microsoft.AspNetCore.Authentication.OpenIdConnect;
@@ -242,6 +243,7 @@ namespace MyCompanyName.MyProjectName.Web
             app.UseSwagger();
             app.UseSwaggerUI(options =>
             {
+                options.IndexStream = () => Assembly.GetExecutingAssembly().GetManifestResourceStream("MyCompanyName.MyProjectName.Web.wwwroot.swagger.ui.index.html");
                 options.SwaggerEndpoint("/swagger/v1/swagger.json", "MyProjectName API");
             });
 

templates/app/aspnet-core/src/MyCompanyName.MyProjectName.Web.Host/wwwroot/swagger/ui/index.html

@@ -0,0 +1,95 @@
+<!-- HTML for static distribution bundle build -->
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>%(DocumentTitle)</title>
+    <link href="https://fonts.googleapis.com/css?family=Open+Sans:400,700|Source+Code+Pro:300,600|Titillium+Web:400,600,700"
+          rel="stylesheet">
+    <link rel="stylesheet" type="text/css" href="./swagger-ui.css">
+    <link rel="icon" type="image/png" href="./favicon-32x32.png" sizes="32x32"/>
+    <link rel="icon" type="image/png" href="./favicon-16x16.png" sizes="16x16"/>
+    <style>
+        html {
+            box-sizing: border-box;
+            overflow: -moz-scrollbars-vertical;
+            overflow-y: scroll;
+        }
+
+        *,
+        *:before,
+        *:after {
+            box-sizing: inherit;
+        }
+
+        body {
+            margin: 0;
+            background: #fafafa;
+        }
+    </style>
+    %(HeadContent)
+</head>
+
+<body>
+
+<div id="swagger-ui"></div>
+
+<!-- Workaround for https://github.com/swagger-api/swagger-editor/issues/1371 -->
+<script>
+    if (window.navigator.userAgent.indexOf("Edge") > -1) {
+        console.log("Removing native Edge fetch in favor of swagger-ui's polyfill")
+        window.fetch = undefined;
+    }
+</script>
+
+<script src="./swagger-ui-bundle.js"></script>
+<script src="./swagger-ui-standalone-preset.js"></script>
+<script src="/libs/abp/core/abp.js"></script>
+
+<script>
+    window.onload = function () {
+        var configObject = JSON.parse('%(ConfigObject)');
+        var oauthConfigObject = JSON.parse('%(OAuthConfigObject)');
+
+        // Workaround for https://github.com/swagger-api/swagger-ui/issues/5945
+        configObject.urls.forEach(function (item) {
+            if (item.url.startsWith("http") || item.url.startsWith("/")) return;
+            item.url = window.location.href.replace("index.html", item.url).split('#')[0];
+        });
+
+        // If validatorUrl is not explicitly provided, disable the feature by setting to null
+        if (!configObject.hasOwnProperty("validatorUrl"))
+            configObject.validatorUrl = null
+
+        // If oauth2RedirectUrl isn't specified, use the built-in default
+        if (!configObject.hasOwnProperty("oauth2RedirectUrl"))
+            configObject.oauth2RedirectUrl = window.location.href.replace("index.html", "oauth2-redirect.html").split('#')[0];
+
+        // Apply mandatory parameters
+        configObject.dom_id = "#swagger-ui";
+        configObject.presets = [SwaggerUIBundle.presets.apis, SwaggerUIStandalonePreset];
+        configObject.layout = "StandaloneLayout";
+        configObject.requestInterceptor = function (request) {
+            var token = abp.auth.getToken();
+            request.headers.Authorization = token ? "Bearer " + token : null;
+            var antiForgeryToken = abp.security.antiForgery.getToken();
+            if (antiForgeryToken) {
+                request.headers[abp.security.antiForgery.tokenHeaderName] = antiForgeryToken;
+            }
+            return request;
+        };
+
+        // Begin Swagger UI call region
+
+        const ui = SwaggerUIBundle(configObject);
+
+        ui.initOAuth(oauthConfigObject);
+
+        // End Swagger UI call region
+
+        window.ui = ui
+    }
+</script>
+</body>
+
+</html>

templates/app/aspnet-core/src/MyCompanyName.MyProjectName.Web/MyCompanyName.MyProjectName.Web.csproj

@@ -20,6 +20,11 @@
     <Content Remove="Logs\**" />
     <EmbeddedResource Remove="Logs\**" />
     <None Remove="Logs\**" />
+    <Content Remove="wwwroot\swagger\ui\index.html" />
+    <EmbeddedResource Include="wwwroot\swagger\ui\index.html">
+      <ExcludeFromSingleFile>true</ExcludeFromSingleFile>
+      <CopyToPublishDirectory>PreserveNewest</CopyToPublishDirectory>
+    </EmbeddedResource>
   </ItemGroup>
 
   <ItemGroup>

templates/app/aspnet-core/src/MyCompanyName.MyProjectName.Web/MyProjectNameWebModule.cs

@@ -1,5 +1,6 @@
 using System;
 using System.IO;
+using System.Reflection;
 using Localization.Resources.AbpUi;
 using Microsoft.AspNetCore;
 using Microsoft.AspNetCore.Builder;
@@ -216,6 +217,7 @@ namespace MyCompanyName.MyProjectName.Web
             app.UseSwagger();
             app.UseSwaggerUI(options =>
             {
+                options.IndexStream = () => Assembly.GetExecutingAssembly().GetManifestResourceStream("MyCompanyName.MyProjectName.Web.wwwroot.swagger.ui.index.html");
                 options.SwaggerEndpoint("/swagger/v1/swagger.json", "MyProjectName API");
             });
             app.UseAuditing();

templates/app/aspnet-core/src/MyCompanyName.MyProjectName.Web/wwwroot/swagger/ui/index.html

@@ -0,0 +1,95 @@
+<!-- HTML for static distribution bundle build -->
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>%(DocumentTitle)</title>
+    <link href="https://fonts.googleapis.com/css?family=Open+Sans:400,700|Source+Code+Pro:300,600|Titillium+Web:400,600,700"
+          rel="stylesheet">
+    <link rel="stylesheet" type="text/css" href="./swagger-ui.css">
+    <link rel="icon" type="image/png" href="./favicon-32x32.png" sizes="32x32"/>
+    <link rel="icon" type="image/png" href="./favicon-16x16.png" sizes="16x16"/>
+    <style>
+        html {
+            box-sizing: border-box;
+            overflow: -moz-scrollbars-vertical;
+            overflow-y: scroll;
+        }
+
+        *,
+        *:before,
+        *:after {
+            box-sizing: inherit;
+        }
+
+        body {
+            margin: 0;
+            background: #fafafa;
+        }
+    </style>
+    %(HeadContent)
+</head>
+
+<body>
+
+<div id="swagger-ui"></div>
+
+<!-- Workaround for https://github.com/swagger-api/swagger-editor/issues/1371 -->
+<script>
+    if (window.navigator.userAgent.indexOf("Edge") > -1) {
+        console.log("Removing native Edge fetch in favor of swagger-ui's polyfill")
+        window.fetch = undefined;
+    }
+</script>
+
+<script src="./swagger-ui-bundle.js"></script>
+<script src="./swagger-ui-standalone-preset.js"></script>
+<script src="/libs/abp/core/abp.js"></script>
+
+<script>
+    window.onload = function () {
+        var configObject = JSON.parse('%(ConfigObject)');
+        var oauthConfigObject = JSON.parse('%(OAuthConfigObject)');
+
+        // Workaround for https://github.com/swagger-api/swagger-ui/issues/5945
+        configObject.urls.forEach(function (item) {
+            if (item.url.startsWith("http") || item.url.startsWith("/")) return;
+            item.url = window.location.href.replace("index.html", item.url).split('#')[0];
+        });
+
+        // If validatorUrl is not explicitly provided, disable the feature by setting to null
+        if (!configObject.hasOwnProperty("validatorUrl"))
+            configObject.validatorUrl = null
+
+        // If oauth2RedirectUrl isn't specified, use the built-in default
+        if (!configObject.hasOwnProperty("oauth2RedirectUrl"))
+            configObject.oauth2RedirectUrl = window.location.href.replace("index.html", "oauth2-redirect.html").split('#')[0];
+
+        // Apply mandatory parameters
+        configObject.dom_id = "#swagger-ui";
+        configObject.presets = [SwaggerUIBundle.presets.apis, SwaggerUIStandalonePreset];
+        configObject.layout = "StandaloneLayout";
+        configObject.requestInterceptor = function (request) {
+            var token = abp.auth.getToken();
+            request.headers.Authorization = token ? "Bearer " + token : null;
+            var antiForgeryToken = abp.security.antiForgery.getToken();
+            if (antiForgeryToken) {
+                request.headers[abp.security.antiForgery.tokenHeaderName] = antiForgeryToken;
+            }
+            return request;
+        };
+
+        // Begin Swagger UI call region
+
+        const ui = SwaggerUIBundle(configObject);
+
+        ui.initOAuth(oauthConfigObject);
+
+        // End Swagger UI call region
+
+        window.ui = ui
+    }
+</script>
+</body>
+
+</html>

templates/module/aspnet-core/host/MyCompanyName.MyProjectName.Web.Host/MyCompanyName.MyProjectName.Web.Host.csproj

@@ -41,6 +41,11 @@
     <Content Remove="Logs\**" />
     <EmbeddedResource Remove="Logs\**" />
     <None Remove="Logs\**" />
+    <Content Remove="wwwroot\swagger\ui\index.html" />
+    <EmbeddedResource Include="wwwroot\swagger\ui\index.html">
+      <ExcludeFromSingleFile>true</ExcludeFromSingleFile>
+      <CopyToPublishDirectory>PreserveNewest</CopyToPublishDirectory>
+    </EmbeddedResource>
   </ItemGroup>
 
   <ItemGroup>

templates/module/aspnet-core/host/MyCompanyName.MyProjectName.Web.Host/MyProjectNameWebHostModule.cs

@@ -4,6 +4,7 @@ using Microsoft.AspNetCore.Hosting;
 using Microsoft.Extensions.DependencyInjection;
 using Microsoft.OpenApi.Models;
 using System.IO;
+using System.Reflection;
 using System.Threading.Tasks;
 using Microsoft.AspNetCore.Authentication;
 using Microsoft.AspNetCore.Authentication.OpenIdConnect;
@@ -247,7 +248,8 @@ namespace MyCompanyName.MyProjectName
             app.UseSwagger();
             app.UseSwaggerUI(options =>
             {
-                options.SwaggerEndpoint("/swagger/v1/swagger.json", "MyProjectName API");
+                options.IndexStream = () => Assembly.GetExecutingAssembly().GetManifestResourceStream("MyCompanyName.MyProjectName.wwwroot.swagger.ui.index.html");
+                options.SwaggerEndpoint("/swagger/v1/swagger.json", "Support APP API");
             });
 
             app.UseAuditing();

templates/module/aspnet-core/host/MyCompanyName.MyProjectName.Web.Host/wwwroot/swagger/ui/index.html

@@ -0,0 +1,95 @@
+<!-- HTML for static distribution bundle build -->
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>%(DocumentTitle)</title>
+    <link href="https://fonts.googleapis.com/css?family=Open+Sans:400,700|Source+Code+Pro:300,600|Titillium+Web:400,600,700"
+          rel="stylesheet">
+    <link rel="stylesheet" type="text/css" href="./swagger-ui.css">
+    <link rel="icon" type="image/png" href="./favicon-32x32.png" sizes="32x32"/>
+    <link rel="icon" type="image/png" href="./favicon-16x16.png" sizes="16x16"/>
+    <style>
+        html {
+            box-sizing: border-box;
+            overflow: -moz-scrollbars-vertical;
+            overflow-y: scroll;
+        }
+
+        *,
+        *:before,
+        *:after {
+            box-sizing: inherit;
+        }
+
+        body {
+            margin: 0;
+            background: #fafafa;
+        }
+    </style>
+    %(HeadContent)
+</head>
+
+<body>
+
+<div id="swagger-ui"></div>
+
+<!-- Workaround for https://github.com/swagger-api/swagger-editor/issues/1371 -->
+<script>
+    if (window.navigator.userAgent.indexOf("Edge") > -1) {
+        console.log("Removing native Edge fetch in favor of swagger-ui's polyfill")
+        window.fetch = undefined;
+    }
+</script>
+
+<script src="./swagger-ui-bundle.js"></script>
+<script src="./swagger-ui-standalone-preset.js"></script>
+<script src="/libs/abp/core/abp.js"></script>
+
+<script>
+    window.onload = function () {
+        var configObject = JSON.parse('%(ConfigObject)');
+        var oauthConfigObject = JSON.parse('%(OAuthConfigObject)');
+
+        // Workaround for https://github.com/swagger-api/swagger-ui/issues/5945
+        configObject.urls.forEach(function (item) {
+            if (item.url.startsWith("http") || item.url.startsWith("/")) return;
+            item.url = window.location.href.replace("index.html", item.url).split('#')[0];
+        });
+
+        // If validatorUrl is not explicitly provided, disable the feature by setting to null
+        if (!configObject.hasOwnProperty("validatorUrl"))
+            configObject.validatorUrl = null
+
+        // If oauth2RedirectUrl isn't specified, use the built-in default
+        if (!configObject.hasOwnProperty("oauth2RedirectUrl"))
+            configObject.oauth2RedirectUrl = window.location.href.replace("index.html", "oauth2-redirect.html").split('#')[0];
+
+        // Apply mandatory parameters
+        configObject.dom_id = "#swagger-ui";
+        configObject.presets = [SwaggerUIBundle.presets.apis, SwaggerUIStandalonePreset];
+        configObject.layout = "StandaloneLayout";
+        configObject.requestInterceptor = function (request) {
+            var token = abp.auth.getToken();
+            request.headers.Authorization = token ? "Bearer " + token : null;
+            var antiForgeryToken = abp.security.antiForgery.getToken();
+            if (antiForgeryToken) {
+                request.headers[abp.security.antiForgery.tokenHeaderName] = antiForgeryToken;
+            }
+            return request;
+        };
+
+        // Begin Swagger UI call region
+
+        const ui = SwaggerUIBundle(configObject);
+
+        ui.initOAuth(oauthConfigObject);
+
+        // End Swagger UI call region
+
+        window.ui = ui
+    }
+</script>
+</body>
+
+</html>

templates/module/aspnet-core/host/MyCompanyName.MyProjectName.Web.Unified/MyCompanyName.MyProjectName.Web.Unified.csproj

@@ -48,6 +48,11 @@
     <Content Remove="Logs\**" />
     <EmbeddedResource Remove="Logs\**" />
     <None Remove="Logs\**" />
+    <Content Remove="wwwroot\swagger\ui\index.html" />
+    <EmbeddedResource Include="wwwroot\swagger\ui\index.html">
+      <ExcludeFromSingleFile>true</ExcludeFromSingleFile>
+      <CopyToPublishDirectory>PreserveNewest</CopyToPublishDirectory>
+    </EmbeddedResource>
   </ItemGroup>
 
   <ItemGroup>

templates/module/aspnet-core/host/MyCompanyName.MyProjectName.Web.Unified/MyProjectNameWebUnifiedModule.cs

@@ -1,4 +1,5 @@
 using System.IO;
+using System.Reflection;
 using Microsoft.AspNetCore.Builder;
 using Microsoft.Extensions.DependencyInjection;
 using Microsoft.Extensions.Hosting;
@@ -145,6 +146,7 @@ namespace MyCompanyName.MyProjectName
             app.UseSwagger();
             app.UseSwaggerUI(options =>
             {
+                options.IndexStream = () => Assembly.GetExecutingAssembly().GetManifestResourceStream("MyCompanyName.MyProjectName.wwwroot.swagger.ui.index.html");
                 options.SwaggerEndpoint("/swagger/v1/swagger.json", "Support APP API");
             });
 

templates/module/aspnet-core/host/MyCompanyName.MyProjectName.Web.Unified/wwwroot/swagger/ui/index.html

@@ -0,0 +1,95 @@
+<!-- HTML for static distribution bundle build -->
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>%(DocumentTitle)</title>
+    <link href="https://fonts.googleapis.com/css?family=Open+Sans:400,700|Source+Code+Pro:300,600|Titillium+Web:400,600,700"
+          rel="stylesheet">
+    <link rel="stylesheet" type="text/css" href="./swagger-ui.css">
+    <link rel="icon" type="image/png" href="./favicon-32x32.png" sizes="32x32"/>
+    <link rel="icon" type="image/png" href="./favicon-16x16.png" sizes="16x16"/>
+    <style>
+        html {
+            box-sizing: border-box;
+            overflow: -moz-scrollbars-vertical;
+            overflow-y: scroll;
+        }
+
+        *,
+        *:before,
+        *:after {
+            box-sizing: inherit;
+        }
+
+        body {
+            margin: 0;
+            background: #fafafa;
+        }
+    </style>
+    %(HeadContent)
+</head>
+
+<body>
+
+<div id="swagger-ui"></div>
+
+<!-- Workaround for https://github.com/swagger-api/swagger-editor/issues/1371 -->
+<script>
+    if (window.navigator.userAgent.indexOf("Edge") > -1) {
+        console.log("Removing native Edge fetch in favor of swagger-ui's polyfill")
+        window.fetch = undefined;
+    }
+</script>
+
+<script src="./swagger-ui-bundle.js"></script>
+<script src="./swagger-ui-standalone-preset.js"></script>
+<script src="/libs/abp/core/abp.js"></script>
+
+<script>
+    window.onload = function () {
+        var configObject = JSON.parse('%(ConfigObject)');
+        var oauthConfigObject = JSON.parse('%(OAuthConfigObject)');
+
+        // Workaround for https://github.com/swagger-api/swagger-ui/issues/5945
+        configObject.urls.forEach(function (item) {
+            if (item.url.startsWith("http") || item.url.startsWith("/")) return;
+            item.url = window.location.href.replace("index.html", item.url).split('#')[0];
+        });
+
+        // If validatorUrl is not explicitly provided, disable the feature by setting to null
+        if (!configObject.hasOwnProperty("validatorUrl"))
+            configObject.validatorUrl = null
+
+        // If oauth2RedirectUrl isn't specified, use the built-in default
+        if (!configObject.hasOwnProperty("oauth2RedirectUrl"))
+            configObject.oauth2RedirectUrl = window.location.href.replace("index.html", "oauth2-redirect.html").split('#')[0];
+
+        // Apply mandatory parameters
+        configObject.dom_id = "#swagger-ui";
+        configObject.presets = [SwaggerUIBundle.presets.apis, SwaggerUIStandalonePreset];
+        configObject.layout = "StandaloneLayout";
+        configObject.requestInterceptor = function (request) {
+            var token = abp.auth.getToken();
+            request.headers.Authorization = token ? "Bearer " + token : null;
+            var antiForgeryToken = abp.security.antiForgery.getToken();
+            if (antiForgeryToken) {
+                request.headers[abp.security.antiForgery.tokenHeaderName] = antiForgeryToken;
+            }
+            return request;
+        };
+
+        // Begin Swagger UI call region
+
+        const ui = SwaggerUIBundle(configObject);
+
+        ui.initOAuth(oauthConfigObject);
+
+        // End Swagger UI call region
+
+        window.ui = ui
+    }
+</script>
+</body>
+
+</html>