protected TestSecurityPolicyService(
Mock <IEntitiesContext> mockEntities,
Mock <IAuditingService> mockAuditing,
IAppConfiguration configuration)
{
MockUserSecurityPolicies = new Mock <DbSet <UserSecurityPolicy> >();
MockUserSecurityPolicies.Setup(p => p.Remove(It.IsAny <UserSecurityPolicy>())).Verifiable();
MockEntitiesContext = mockEntities ?? new Mock <IEntitiesContext>();
if (mockEntities == null)
{
MockEntitiesContext.Setup(c => c.SaveChangesAsync()).Returns(Task.FromResult(2)).Verifiable();
MockEntitiesContext.Setup(c => c.UserSecurityPolicies).Returns(MockUserSecurityPolicies.Object);
}
EntitiesContext = MockEntitiesContext.Object;
MockAuditingService = mockAuditing ?? new Mock <IAuditingService>();
if (mockAuditing == null)
{
MockAuditingService.Setup(s => s.SaveAuditRecordAsync(It.IsAny <AuditRecord>()))
.Returns(Task.CompletedTask).Verifiable();
}
Auditing = MockAuditingService.Object;
Configuration = configuration ?? new AppConfiguration();
var telemetryClient = new Mock <ITelemetryClient>().Object;
Diagnostics = new TraceDiagnosticsSource(
nameof(TestSecurityPolicyService),
telemetryClient);
}
// This method is auto-detected by the OWIN pipeline. DO NOT RENAME IT!
public static void Configuration(IAppBuilder app)
{
// Tune ServicePointManager
// (based on http://social.technet.microsoft.com/Forums/en-US/windowsazuredata/thread/d84ba34b-b0e0-4961-a167-bbe7618beb83 and https://msdn.microsoft.com/en-us/library/system.net.servicepointmanager.aspx)
ServicePointManager.DefaultConnectionLimit = 500;
ServicePointManager.UseNagleAlgorithm = false;
ServicePointManager.Expect100Continue = false;
// Ensure that SSLv3 is disabled and that Tls v1.2 is enabled.
ServicePointManager.SecurityProtocol &= ~SecurityProtocolType.Ssl3;
ServicePointManager.SecurityProtocol |= SecurityProtocolType.Tls12;
// Setting time out for all RegEx objects. Noted in remarks at https://msdn.microsoft.com/en-us/library/system.text.regularexpressions.regex.matchtimeout%28v=vs.110%29.aspx
AppDomain.CurrentDomain.SetData("REGEX_DEFAULT_MATCH_TIMEOUT", TimeSpan.FromSeconds(10));
// Register IoC
app.UseAutofacInjection(GlobalConfiguration.Configuration);
var dependencyResolver = DependencyResolver.Current;
// Register Elmah
var elmahServiceCenter = new DependencyResolverServiceProviderAdapter(dependencyResolver);
ServiceCenter.Current = _ => elmahServiceCenter;
// Get config
var config = dependencyResolver.GetService <IGalleryConfigurationService>();
var auth = dependencyResolver.GetService <AuthenticationService>();
// Configure machine key for session persistence across slots
SessionPersistence.Setup(config);
// Refresh the content for the ContentObjectService to guarantee it has loaded the latest configuration on startup.
var contentObjectService = dependencyResolver.GetService <IContentObjectService>();
HostingEnvironment.QueueBackgroundWorkItem(async token =>
{
while (!token.IsCancellationRequested)
{
await contentObjectService.Refresh();
await Task.Delay(ContentObjectService.RefreshInterval, token);
}
});
// Configure logging
app.SetLoggerFactory(new DiagnosticsLoggerFactory());
// Remove X-AspNetMvc-Version header
MvcHandler.DisableMvcResponseHeader = true;
if (config.Current.RequireSSL)
{
// Put a middleware at the top of the stack to force the user over to SSL
if (config.Current.ForceSslExclusion == null)
{
app.UseForceSsl(config.Current.SSLPort);
}
else
{
app.UseForceSsl(config.Current.SSLPort, config.Current.ForceSslExclusion);
}
}
var tds = new TraceDiagnosticsSource(nameof(OwinStartup), dependencyResolver.GetService <ITelemetryClient>());
if (config.Current.MaxWorkerThreads.HasValue && config.Current.MaxIoThreads.HasValue)
{
int defaultMaxWorkerThreads, defaultMaxIoThreads;
ThreadPool.GetMaxThreads(out defaultMaxWorkerThreads, out defaultMaxIoThreads);
tds.Information($"Default maxWorkerThreads: {defaultMaxWorkerThreads}, maxIoThreads: {defaultMaxIoThreads}");
var success = ThreadPool.SetMaxThreads(config.Current.MaxWorkerThreads.Value, config.Current.MaxIoThreads.Value);
tds.Information($"Attempt to update max threads to {config.Current.MaxWorkerThreads.Value}, {config.Current.MaxIoThreads.Value}, success: {success}");
}
if (config.Current.MinWorkerThreads.HasValue && config.Current.MinIoThreads.HasValue)
{
int defaultMinWorkerThreads, defaultMinIoThreads;
ThreadPool.GetMinThreads(out defaultMinWorkerThreads, out defaultMinIoThreads);
tds.Information($"Default minWorkerThreads: {defaultMinWorkerThreads}, minIoThreads: {defaultMinIoThreads}");
var success = ThreadPool.SetMinThreads(config.Current.MinWorkerThreads.Value, config.Current.MinIoThreads.Value);
tds.Information($"Attempt to update min threads to {config.Current.MinWorkerThreads.Value}, {config.Current.MinIoThreads.Value}, success: {success}");
}
// Get the local user auth provider, if present and attach it first
Authenticator localUserAuthenticator;
if (auth.Authenticators.TryGetValue(Authenticator.GetName(typeof(LocalUserAuthenticator)), out localUserAuthenticator))
{
// Configure cookie auth now
localUserAuthenticator.Startup(config, app).Wait();
}
// Attach external sign-in cookie middleware
app.SetDefaultSignInAsAuthenticationType(AuthenticationTypes.External);
app.UseCookieAuthentication(new CookieAuthenticationOptions
{
AuthenticationType = AuthenticationTypes.External,
AuthenticationMode = AuthenticationMode.Passive,
CookieName = ".AspNet." + AuthenticationTypes.External,
ExpireTimeSpan = TimeSpan.FromMinutes(5)
});
// Attach non-cookie auth providers
var nonCookieAuthers = auth
.Authenticators
.Where(p => !String.Equals(
p.Key,
Authenticator.GetName(typeof(LocalUserAuthenticator)),
StringComparison.OrdinalIgnoreCase))
.Select(p => p.Value);
foreach (var auther in nonCookieAuthers)
{
auther.Startup(config, app).Wait();
}
var featureFlags = DependencyResolver.Current.GetService <IFeatureFlagCacheService>();
if (featureFlags != null)
{
StartFeatureFlags(featureFlags);
}
// Catch unobserved exceptions from threads before they cause IIS to crash:
TaskScheduler.UnobservedTaskException += (sender, exArgs) =>
{
// Send to AppInsights
try
{
var telemetryClient = DependencyResolver.Current.GetService <ITelemetryClient>();
telemetryClient.TrackException(exArgs.Exception, new Dictionary <string, string>()
{
{ "ExceptionOrigin", "UnobservedTaskException" }
});
}
catch (Exception)
{
// this is a tragic moment... swallow Exception to prevent crashing IIS
}
// Send to ELMAH
try
{
HttpContext current = HttpContext.Current;
if (current != null)
{
var errorSignal = ErrorSignal.FromContext(current);
if (errorSignal != null)
{
errorSignal.Raise(exArgs.Exception, current);
}
}
}
catch (Exception)
{
// more tragedy... swallow Exception to prevent crashing IIS
}
exArgs.SetObserved();
};
HasRun = true;
}
