Inicio Explorar Axuda
Rexistro Iniciar sesión
CDHABOOK
/
TEAMModelHTEX
3
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: 429df042e1
Ramas Etiquetas
TEAMModelHTEX
/
HTEX.Complex
/
Program.cs

Program.cs 6.9 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135 
  1. using Hangfire;
    2. 

  2. using Hangfire.Redis.StackExchange;
    3. 

  3. using HTEX.Complex.Service;
    4. 

  4. using HTEX.Complex.Service.AzureRedis;
    5. 

  5. using Microsoft.AspNetCore.Authentication.JwtBearer;
    6. 

  6. using Microsoft.Extensions.DependencyInjection.Extensions;
    7. 

  7. using Microsoft.IdentityModel.Tokens;
    8. 

  8. using System.IdentityModel.Tokens.Jwt;
    9. 

  9. using TEAMModelOS.SDK;
    10. 

  10. using TEAMModelOS.SDK.DI;
    11. 

  11. using TEAMModelOS.SDK.DI.AzureCosmos3;
    12. 

  12. 

  13. namespace HTEX.Complex
    14. 

  14. {
    15. 

  15.     public class Program
    16. 

  16.     {
    17. 

  17.         public static void Main(string[] args)
    18. 

  18.         {
    19. 

  19.             var builder = WebApplication.CreateBuilder(args);
    20. 

  20. 

  21. 

  22.             // Add services to the container.
    23. 

  23. 

  24.             JwtSecurityTokenHandler.DefaultMapInboundClaims = false;
    25. 

  25.             builder.Services.AddAuthentication(options => options.DefaultScheme = JwtBearerDefaults.AuthenticationScheme)
    26. 

  26.                 .AddJwtBearer(options => //AzureADJwtBearer
    27. 

  27.                 {
    28. 

  28.                     //options.SaveToken = true; //驗證令牌由服務器生成才有效,不適用於服務重啟或分布式架構
    29. 

  29.                     options.Authority ="https://login.chinacloudapi.cn/4807e9cf-87b8-4174-aa5b-e76497d7392b/v2.0";// builder.Configuration["Option:Authority"];
    30. 

  30.                     options.Audience = "72643704-b2e7-4b26-b881-bd5865e7a7a5";//builder.Configuration["Option:Audience"];
    31. 

  31.                     options.RequireHttpsMetadata = true;
    32. 

  32.                     options.TokenValidationParameters = new TokenValidationParameters
    33. 

  33.                     {
    34. 

  34.                         RoleClaimType = "roles",
    35. 

  35.                         //ValidAudiences = new string[] { builder.Configuration["Option:Audience"], $"api://{builder.Configuration["Option:Audience"]}" }
    36. 

  36.                         ValidAudiences = new string[] { "72643704-b2e7-4b26-b881-bd5865e7a7a5", $"api://72643704-b2e7-4b26-b881-bd5865e7a7a5" }
    37. 

  37.                     };
    38. 

  38.                     options.Events = new JwtBearerEvents();
    39. 

  39.                     //下列事件有需要紀錄則打開
    40. 

  40.                     //options.Events.OnMessageReceived = async context => { await Task.FromResult(0); };
    41. 

  41.                     //options.Events.OnForbidden = async context => { await Task.FromResult(0); };
    42. 

  42.                     //options.Events.OnChallenge = async context => { await Task.FromResult(0); };
    43. 

  43.                     //options.Events.OnAuthenticationFailed = async context => { await Task.FromResult(0); };
    44. 

  44.                     options.Events.OnTokenValidated = async context =>
    45. 

  45.                     {
    46. 

  46.                         if (!context.Principal.Claims.Any(x => x.Type.Equals("http://schemas.microsoft.com/identity/claims/scope")) //ClaimConstants.Scope
    47. 

  47.                         && !context.Principal.Claims.Any(y => y.Type.Equals("roles"))) //ClaimConstants.Roles //http://schemas.microsoft.com/ws/2008/06/identity/claims/role
    48. 

  48.                         {
    49. 

  49.                             //TODO 需處理額外授權非角色及範圍的訪問異常紀錄
    50. 

  50.                             throw new UnauthorizedAccessException("Neither scope or roles claim was found in the bearer token.");
    51. 

  51.                         }
    52. 

  52.                         await Task.FromResult(0);
    53. 

  53.                     };
    54. 

  54.                 });
    55. 

  55.             builder.Services.AddControllers();
    56. 

  56. #if DEBUG
    57. 

  57.             builder.WebHost.UseUrls(new[] { "https://*:7298" });
    58. 

  58. #endif
    59. 

  59.             // Learn more about configuring Swagger/OpenAPI at https://aka.ms/aspnetcore/swashbuckle
    60. 

  60.             builder.Services.AddEndpointsApiExplorer();
    61. 

  61.             //builder.Services.AddSwaggerGen();
    62. 

  62.             builder.Services.AddHttpClient();
    63. 

  63.             string StorageConnectionString = builder.Configuration.GetValue<string>("Azure:Storage:ConnectionString");
    64. 

  64.             string StorageConnectionStringTest = builder.Configuration.GetValue<string>("Azure:Storage:ConnectionString-Test");
    65. 

  65. 

  66.             //string ServiceBusConnectionString = builder.Configuration.GetValue<string>("Azure:ServiceBus:ConnectionString");
    67. 

  67.             //string ServiceBusConnectionStringTest = builder.Configuration.GetValue<string>("Azure:ServiceBus:ConnectionString-Test");
    68. 

  68. 

  69.             string RedisConnectionString = builder.Configuration.GetValue<string>("Azure:Redis:ConnectionString");
    70. 

  70.             string RedisConnectionStringTest = builder.Configuration.GetValue<string>("Azure:Redis:ConnectionString-Test");
    71. 

  71. 

  72.             string CosmosConnectionString = builder.Configuration.GetValue<string>("Azure:Cosmos:ConnectionString");
    73. 

  73.             string CosmosConnectionStringTest = builder.Configuration.GetValue<string>("Azure:Cosmos:ConnectionString-Test");
    74. 

  74. 

  75.             //Storage
    76. 

  76.             builder.Services.AddAzureStorage(StorageConnectionString, "Default");
    77. 

  77.             builder.Services.AddAzureStorage(StorageConnectionStringTest, "Test");
    78. 

  78.             //ServiceBus
    79. 

  79.             //builder.Services.AddAzureServiceBus(ServiceBusConnectionString, "Default");
    80. 

  80.             //builder.Services.AddAzureServiceBus(ServiceBusConnectionStringTest, "Test");
    81. 

  81.             //Redis
    82. 

  82.             builder.Services.AddAzureRedis(RedisConnectionString, "Default");
    83. 

  83.             builder.Services.AddAzureRedis(RedisConnectionStringTest, "Test");
    84. 

  84.             //Cosmos
    85. 

  85.             builder.Services.AddAzureCosmos3(CosmosConnectionString, "Default");
    86. 

  86.             builder.Services.AddAzureCosmos3(CosmosConnectionStringTest, "Test");
    87. 

  87. 

  88.             builder.Services.AddHttpContextAccessor();
    89. 

  89.             builder.Services.AddHttpClient<DingDing>();
    90. 

  90.             string path = $"{builder.Environment.ContentRootPath}/JsonFiles";
    91. 

  91.             builder.Services.TryAddSingleton(new Region2LongitudeLatitudeTranslator(path));
    92. 

  92.             builder.Services.AddIPSearcher(path);
    93. 

  93.             builder.Services.AddCors(options =>
    94. 

  94.             {
    95. 

  95.                 options.AddDefaultPolicy(
    96. 

  96.                 builder =>
    97. 

  97.                 {
    98. 

  98. 

  99.                 builder.AllowAnyOrigin() 
    100. 

  100.                         .AllowAnyHeader()
    101. 

  101.                         .AllowAnyMethod();
    102. 

  102.                 });
    103. 

  103.             });
    104. 

  104.             builder.Services.AddHangfire(config => {
    105. 

  105.                 config.UseRedisStorage(builder.Configuration.GetValue<string>("Azure:Redis:ConnectionString"));
    106. 

  106.             });
    107. 

  107.             builder.Services.AddHangfireServer();
    108. 

  108. 

  109.             builder.Services.AddControllersWithViews();
    110. 

  110. 

  111.             var app = builder.Build();
    112. 

  112. 

  113.             // Configure the HTTP request pipeline.
    114. 

  114.             if (!app.Environment.IsDevelopment())
    115. 

  115.             {
    116. 

  116.                 app.UseExceptionHandler("/Home/Error");
    117. 

  117.                 // The default HSTS value is 30 days. You may want to change this for production scenarios, see https://aka.ms/aspnetcore-hsts.
    118. 

  118.                 app.UseHsts();
    119. 

  119.             }
    120. 

  120. 

  121.             app.UseHttpsRedirection();
    122. 

  122.             app.UseStaticFiles();
    123. 

  123. 

  124.             app.UseRouting();
    125. 

  125.             app.UseCors(); //使用跨域設定
    126. 

  126.             app.UseHttpsRedirection(); //開發中暫時關掉
    127. 

  127.             app.UseAuthentication();
    128. 

  128.             app.UseAuthorization();
    129. 

  129.             app.MapControllerRoute(
    130. 

  130.                 name: "default",
    131. 

  131.                 pattern: "{controller=Home}/{action=Index}/{id?}");
    132. 

  132.             app.Run();
    133. 

  133.         }
    134. 

  134.     }
    135. 

  135. }
    136.