public static void AddHttps(this IServiceCollection services, ISafeLogger logger, HttpsOptions options)
{
if (options.Enabled)
{
logger?.Trace(() => "HTTPS enabled.");
services.AddHttpsRedirection(o =>
{
o.HttpsPort = null;
o.RedirectStatusCode = options.Hsts.Enabled ? 307 : 301;
});
if (options.Hsts.Enabled)
{
logger?.Trace(() => "HSTS enabled.");
services.AddHsts(o =>
{
o.MaxAge = options.Hsts.HstsMaxAge;
o.IncludeSubDomains = options.Hsts.IncludeSubdomains;
o.Preload = options.Hsts.Preload;
});
}
}
}
internal static IHostBuilder CreateHostBuilder(string[] args) =>
Host.CreateDefaultBuilder(args)
.ConfigureAppConfiguration((hostingContext, config) =>
{
config.AddYamlFile("appsettings.yml", optional: true, reloadOnChange: true);
var configDictionary = config.Build().SerializeToJson();
Console.ForegroundColor = ConsoleColor.Blue;
Console.WriteLine($"appsettings {@configDictionary}");
Console.ResetColor();
})
.ConfigureWebHostDefaults(webBuilder =>
{
webBuilder.UseStartup <Startup>();
})
.ConfigureServices((hostingContext, services) =>
{
var https = new HttpsOptions();
var blog = new BlogOptions();
var httpsOption = hostingContext.Configuration.GetSection("https");
https.ListenAddress = httpsOption.GetValue <string>(nameof(https.ListenAddress));
https.ListenPort = httpsOption.GetValue <int>(nameof(https.ListenPort));
https.PublicCertFile = httpsOption.GetValue <string>(nameof(https.PublicCertFile));
https.PrivateCertFile = httpsOption.GetValue <string>(nameof(https.PrivateCertFile));
services.Configure <HttpsOptions>(httpsOption);
var blogOption = hostingContext.Configuration.GetSection("blog");
blog.AdminUrl = blogOption.GetValue <string>(nameof(BlogOptions.AdminUrl));
blog.ApiUrl = blogOption.GetValue <string>(nameof(BlogOptions.ApiUrl));
blog.WebUrl = blogOption.GetValue <string>(nameof(BlogOptions.WebUrl));
blog.StaticUrl = blogOption.GetValue <string>(nameof(BlogOptions.StaticUrl));
blog.TelegramUrl = blogOption.GetValue <string>(nameof(BlogOptions.TelegramUrl));
blog.GithubUrl = blogOption.GetValue <string>(nameof(BlogOptions.GithubUrl));
blog.Title = blogOption.GetValue <string>(nameof(BlogOptions.Title));
services.Configure <BlogOptions>(blogOption);
services.Configure <KestrelServerOptions>(options =>
{
IPAddress address = null;
try
{
address = IPAddress.Parse(https.ListenAddress);
}
catch (FormatException)
{
address = Dns.GetHostAddresses(https.ListenAddress).FirstOrDefault();
}
IPEndPoint SharpBlogEndpoint = new IPEndPoint(address, https.ListenPort);
options.Listen(SharpBlogEndpoint, listenOptions =>
{
listenOptions.UseHttps(httpsOptions =>
{
if (!File.Exists(https.PrivateCertFile) || !File.Exists(https.PublicCertFile))
{
X509Certificate2 certificate = SharpBlogEndpoint.Address.CreateSelfSignedCertificate("CN=SharpBlog");
File.WriteAllBytes(https.PrivateCertFile, certificate.Export(X509ContentType.Pfx));
File.WriteAllBytes(https.PublicCertFile, certificate.Export(X509ContentType.Cert));
}
try
{
httpsOptions.ServerCertificate = new X509Certificate2(https.PrivateCertFile);
}
catch (CryptographicException)
{
Console.Error.WriteLine("Error importing SharpBlog certificate.");
}
httpsOptions.SslProtocols = SslProtocols.Tls12;
});
});
});
services.AddRazorPages();
services.AddServerSideBlazor()
.AddHubOptions(options =>
{
options.EnableDetailedErrors = true;
options.MaximumReceiveMessageSize = 10 * 1024 * 1024;
});
services.AddAntDesign();
services.AddScoped <AuthenticationStateProvider, OAuthService>();
services.Configure <ProSettings>(x =>
{
x.Title = blog.Title;
x.NavTheme = "light";
x.Layout = "mix";
x.PrimaryColor = "daybreak";
x.ContentWidth = "Fluid";
x.HeaderHeight = 50;
});
services.AddHttpClient("api", x =>
{
x.BaseAddress = new Uri(blog.ApiUrl);
}).ConfigurePrimaryHttpMessageHandler(() => new HttpClientHandler {
ServerCertificateCustomValidationCallback = (httpRequestMessage, cert, cetChain, policyErrors) => {
return(true);
}
});
}).UseSerilog();
public override void PreConfigureServices(ServiceConfigurationContext context)
{
var configuration = context.Services.GetConfiguration();
var https = new HttpsOptions();
var blog = new BlogOptions();
var notification = new NotificationOptions();
var swagger = new SwaggerOptions();
var storage = new StorageOptions();
var cors = new CorsOptions();
var jwt = new JwtOptions();
var worker = new WorkerOptions();
var tencentCloud = new TencentCloudOptions();
var authorize = new AuthorizeOptions();
PreConfigure <HttpsOptions>(options =>
{
var httpsOption = configuration.GetSection("https");
Configure <HttpsOptions>(httpsOption);
options.ListenAddress = httpsOption.GetValue <string>(nameof(options.ListenAddress));
options.ListenPort = httpsOption.GetValue <int>(nameof(options.ListenPort));
options.PublicCertFile = httpsOption.GetValue <string>(nameof(options.PublicCertFile));
options.PrivateCertFile = httpsOption.GetValue <string>(nameof(options.PrivateCertFile));
https = options;
});
PreConfigure <BlogOptions>(options =>
{
var blogOption = configuration.GetSection("blog");
Configure <BlogOptions>(blogOption);
options.StaticUrl = blogOption.GetValue <string>(nameof(options.StaticUrl));
options.ApiUrl = blogOption.GetValue <string>(nameof(options.ApiUrl));
options.WebUrl = blogOption.GetValue <string>(nameof(options.WebUrl));
options.AdminUrl = blogOption.GetValue <string>(nameof(options.AdminUrl));
blog = options;
});
PreConfigure <NotificationOptions>(options =>
{
var notificationOption = configuration.GetSection("notification");
Configure <NotificationOptions>(notificationOption);
options.FtqqUrl = notificationOption.GetValue <string>(nameof(options.FtqqUrl));
notification = options;
});
PreConfigure <SwaggerOptions>(options =>
{
var swaggerOption = configuration.GetSection("swagger");
Configure <SwaggerOptions>(swaggerOption);
options.Version = swaggerOption.GetValue <string>(nameof(options.Version));
options.Name = swaggerOption.GetValue <string>(nameof(options.Name));
options.Title = swaggerOption.GetValue <string>(nameof(options.Title));
options.Description = swaggerOption.GetValue <string>(nameof(options.Description));
options.RoutePrefix = swaggerOption.GetValue <string>(nameof(options.RoutePrefix));
options.DocumentTitle = swaggerOption.GetValue <string>(nameof(options.DocumentTitle));
swagger = options;
});
PreConfigure <StorageOptions>(options =>
{
var storageOption = configuration.GetSection("storage");
Configure <StorageOptions>(storageOption);
options.Mongodb = storageOption.GetValue <string>(nameof(options.Mongodb));
options.RedisIsEnabled = storageOption.GetValue <bool>(nameof(options.RedisIsEnabled));
options.Redis = storageOption.GetValue <string>(nameof(options.Redis));
storage = options;
});
PreConfigure <CorsOptions>(options =>
{
var corsOption = configuration.GetSection("cors");
Configure <CorsOptions>(corsOption);
options.PolicyName = corsOption.GetValue <string>(nameof(options.PolicyName));
options.Origins = corsOption.GetValue <string>(nameof(options.Origins));
cors = options;
});
PreConfigure <JwtOptions>(options =>
{
var jwtOption = configuration.GetSection("jwt");
Configure <JwtOptions>(jwtOption);
options.Issuer = jwtOption.GetValue <string>(nameof(options.Issuer));
options.Audience = jwtOption.GetValue <string>(nameof(options.Audience));
options.SigningKey = jwtOption.GetValue <string>(nameof(options.SigningKey));
jwt = options;
});
PreConfigure <WorkerOptions>(options =>
{
var workerOption = configuration.GetSection("worker");
Configure <WorkerOptions>(workerOption);
options.IsEnabled = workerOption.GetValue <bool>(nameof(options.IsEnabled));
options.Cron = workerOption.GetValue <string>(nameof(options.Cron));
worker = options;
});
PreConfigure <TencentCloudOptions>(options =>
{
var tencentCloudOption = configuration.GetSection("tencentCloud");
Configure <TencentCloudOptions>(tencentCloudOption);
options.SecretId = tencentCloudOption.GetValue <string>(nameof(options.SecretId));
options.SecretKey = tencentCloudOption.GetValue <string>(nameof(options.SecretKey));
tencentCloud = options;
});
PreConfigure <AuthorizeOptions>(options =>
{
var authorizeOption = configuration.GetSection("authorize");
var githubOption = authorizeOption.GetSection("github");
var giteeOption = authorizeOption.GetSection("gitee");
var alipayOption = authorizeOption.GetSection("alipay");
var dingtalkOption = authorizeOption.GetSection("dingtalk");
var microsoftOption = authorizeOption.GetSection("microsoft");
var weiboOptions = authorizeOption.GetSection("weibo");
var qqOptions = authorizeOption.GetSection("qq");
Configure <AuthorizeOptions>(authorizeOption);
Configure <GithubOptions>(githubOption);
Configure <GiteeOptions>(giteeOption);
Configure <AlipayOptions>(alipayOption);
Configure <DingtalkOptions>(dingtalkOption);
Configure <MicrosoftOptions>(microsoftOption);
Configure <WeiboOptions>(weiboOptions);
Configure <QQOptions>(qqOptions);
options.Github = new GithubOptions
{
ClientId = githubOption.GetValue <string>(nameof(options.Github.ClientId)),
ClientSecret = githubOption.GetValue <string>(nameof(options.Github.ClientSecret)),
RedirectUrl = githubOption.GetValue <string>(nameof(options.Github.RedirectUrl)),
Scope = githubOption.GetValue <string>(nameof(options.Github.Scope))
};
options.Gitee = new GiteeOptions
{
ClientId = giteeOption.GetValue <string>(nameof(options.Gitee.ClientId)),
ClientSecret = giteeOption.GetValue <string>(nameof(options.Gitee.ClientSecret)),
RedirectUrl = giteeOption.GetValue <string>(nameof(options.Gitee.RedirectUrl)),
Scope = giteeOption.GetValue <string>(nameof(options.Gitee.Scope))
};
options.Alipay = new AlipayOptions
{
AppId = alipayOption.GetValue <string>(nameof(options.Alipay.AppId)),
RedirectUrl = alipayOption.GetValue <string>(nameof(options.Alipay.RedirectUrl)),
Scope = alipayOption.GetValue <string>(nameof(options.Alipay.Scope)),
PrivateKey = alipayOption.GetValue <string>(nameof(options.Alipay.PrivateKey)),
PublicKey = alipayOption.GetValue <string>(nameof(options.Alipay.PublicKey))
};
options.Dingtalk = new DingtalkOptions
{
AppId = dingtalkOption.GetValue <string>(nameof(options.Dingtalk.AppId)),
AppSecret = dingtalkOption.GetValue <string>(nameof(options.Dingtalk.AppSecret)),
RedirectUrl = dingtalkOption.GetValue <string>(nameof(options.Dingtalk.RedirectUrl)),
Scope = dingtalkOption.GetValue <string>(nameof(options.Dingtalk.Scope))
};
options.Microsoft = new MicrosoftOptions
{
ClientId = microsoftOption.GetValue <string>(nameof(options.Microsoft.ClientId)),
ClientSecret = microsoftOption.GetValue <string>(nameof(options.Microsoft.ClientSecret)),
RedirectUrl = microsoftOption.GetValue <string>(nameof(options.Microsoft.RedirectUrl)),
Scope = microsoftOption.GetValue <string>(nameof(options.Microsoft.Scope))
};
options.Weibo = new WeiboOptions
{
ClientId = weiboOptions.GetValue <string>(nameof(options.Weibo.ClientId)),
ClientSecret = weiboOptions.GetValue <string>(nameof(options.Weibo.ClientSecret)),
RedirectUrl = weiboOptions.GetValue <string>(nameof(options.Weibo.RedirectUrl)),
Scope = weiboOptions.GetValue <string>(nameof(options.Weibo.Scope))
};
options.QQ = new QQOptions
{
ClientId = qqOptions.GetValue <string>(nameof(options.QQ.ClientId)),
ClientSecret = qqOptions.GetValue <string>(nameof(options.QQ.ClientSecret)),
RedirectUrl = qqOptions.GetValue <string>(nameof(options.QQ.RedirectUrl)),
Scope = qqOptions.GetValue <string>(nameof(options.QQ.Scope))
};
authorize = options;
});
PreConfigure <AppOptions>(options =>
{
options.Https = https;
options.Blog = blog;
options.Swagger = swagger;
options.Storage = storage;
options.Cors = cors;
options.Jwt = jwt;
options.Worker = worker;
options.TencentCloud = tencentCloud;
options.Authorize = authorize;
Configure <AppOptions>(item =>
{
item.Swagger = swagger;
item.Storage = storage;
item.Cors = cors;
item.Jwt = jwt;
item.Worker = worker;
item.TencentCloud = tencentCloud;
item.Authorize = authorize;
});
});
}
