Activities of "Repunjay"
Thanks Mehmet. We will look into your suggestions. Few questions -
- When will ABP version 4.3 be available for us?
- If we upgrade to 4.3, will we be able to re-use our AccountComponent as-is and integrate CAPTCHA and 2FA?
Thanks,
Hi ABP team,
Could you please review this issue and advise on resolution steps? This is blocker for us and we are not able to proceed further. Our app (.Net and Angular) was upgraded from ABP 3.0 to latest 4.2 and we are trying to implement CATCHA and 2FA into the application but not able to proceed due to compilation errors of Angular project, please advise.
Thanks,
Check the docs before asking a question: https://docs.abp.io/en/commercial/latest/ Check the samples, to see the basic tasks: https://docs.abp.io/en/commercial/latest/samples/index The exact solution to your question may have been answered before, please use the search on the homepage.
- ABP Framework version: v3.0.4
- UI type: Angular
- DB provider: EF Core
- Tiered (MVC) or Identity Server Separated (Angular): yes
- Exception message and stack trace: N/A
- Steps to reproduce the issue: N/A
Is there any setting in ABP.IO framework which enforces user to change the password after first login?. If yes, please provide information on the same. If no, can you share some insight on how to set it up in ABP?
Thanks & regards, Repunjay
Check the docs before asking a question: https://docs.abp.io/en/commercial/latest/ Check the samples, to see the basic tasks: https://docs.abp.io/en/commercial/latest/samples/index The exact solution to your question may have been answered before, please use the search on the homepage.
- ABP Framework version: v3.0.4
- UI type: Angular
- Tiered (MVC) or Identity Server Seperated (Angular): yes
- Exception message and stack trace:
- Steps to reproduce the issue:
- We have build a project which has a set of microservices. These microservices are deployed in AWS ECS fargate and exposed as HTTP APIs thru AWS API gateway. We have exported the swagger definitions to build APIs in AWS API gateway. For the identity service, we don't get the swagger definition and we are also not sure about its methods. Due to this, we are unable to host Identity service in AWS API gateway. Would you please advise -
-
- How to get the Swagger definition of Identity service
-
- If there is no Swagger definition, any thoughts on how we can host identity service in AWS API gateway so that the other APIs can authenticate and are accessible.
Thanks, Repunjay
Hi, Thanks for your reply. Sorry but it is not I was looking for. The default implementation of RabbitMQ and sample application works just fine.
As I said earlier, the event gets published sucessfully from the first microservice. The Event Handler which is written in the "Application" project of second microservice doesn't listen to it until the docker container which host the second microservice is restarted. Do I need to move the Event Handler to a specific project for it to continously listening to the published events?
Let me know if you understand the problem or suggest a way to connect online and discuss this issue.
Please advise if you have any update on this issue.
The container is started and it is running fine but if there is no call made to the api, the TradeFinanceBatchEventHandler doesn't listens to the published messages until the container is restarted. So for any messages which are published by service1, I have to start the container of service 2 every time in order to consume and process those messages successfully. How do i keep my Handler listening continously the published messages. Hope I was able to porvide the needed information. Let me know if you need further details.
Check the docs before asking a question: https://docs.abp.io/en/commercial/latest/ Check the samples, to see the basic tasks: https://docs.abp.io/en/commercial/latest/samples/index The exact solution to your question may have been answered before, please use the search on the homepage.
- ABP Framework version: v3.0.4
- UI type: Angular
- Tiered (MVC) or Identity Server Seperated (Angular): yes
- Exception message and stack trace:
- Steps to reproduce the issue:
Hi,
We have one service/api which runs in docker container. When one of the operation of this api is invoked, it publishes an event to a Distributed Event Bus (Rabbit MQ). The event is consumed by the Event handler which is a part of another service/api (Application project). This api is hosted in another container. We have noticed a problem that when the second service is idle, the event handler doesn't listens to the messages published by first service. Thus we have to restart the container of second service and than the handler consumes the event and process it. Is there a way to make that event handler continously listening to the messages despite service becomes idle? The Event Handler is written in the Application project of the second service. Below is the code snippet. Let me know if require further information.
using Microsoft.Extensions.Logging;
using FinanceManagement.SharedServices;
using FinanceManagement.TradeFinanceDetails;
using Shared.MqServices.ETO;
using System;
using System.Collections.Generic;
using System.Text;
using System.Threading.Tasks;
using Volo.Abp.DependencyInjection;
using Volo.Abp.EventBus.Distributed;
namespace FinanceManagement.MessagingServices
{
public class TradeFinanceBatchEventHandler : IDistributedEventHandler<BatchCreatedEto>, ITransientDependency
{
private readonly IDistributedEventBus _distributedEventBus;
private readonly ISharedAppService _sharedAppService;
private readonly ITradeFinanceBatchAppService _tradeFinanceBatchAppService;
private readonly ILogger _logger;
public TradeFinanceBatchEventHandler(IDistributedEventBus distributedEventBus,
ITradeFinanceBatchAppService tradeFinanceBatchAppService,
ISharedAppService sharedAppService,
ILogger<TradeFinanceBatchEventHandler> logger
)
{
_distributedEventBus = distributedEventBus;
_sharedAppService = sharedAppService;
_tradeFinanceBatchAppService = tradeFinanceBatchAppService;
_logger = logger;
}
public async Task HandleEventAsync(BatchCreatedEto eventData)
{
if (eventData.BatchId != Guid.Empty)
{
_logger.LogInformation("Start Process..");
_logger.LogInformation("BatchId : " + eventData.BatchId.ToString());
var batch = await _sharedAppService.GetBatchDetailById(eventData.BatchId);
//Save TradeFinance
var tradeFinancebatch = await _tradeFinanceBatchAppService.SaveRequestForFinancingAsync(batch);
_logger.LogInformation("End Process.");
//Send Acknowledgement
//Update status in BatchService Batch using API
}
}
}
}
Thanks & regards, Repunjay
Check the docs before asking a question: https://docs.abp.io/en/commercial/latest/ Check the samples, to see the basic tasks: https://docs.abp.io/en/commercial/latest/samples/index The exact solution to your question may have been answered before, please use the search on the homepage.
- ABP Framework version: v3.0.4
- UI type: Angular
- Tiered (MVC) or Identity Server Seperated (Angular): yes
- Exception message and stack trace:
- We scanned our project code base through Snyk tool (Synk.io) and it reported few vulnerabilites. While reviewing we found that the assemblies like "System.Net.Http" and "System.Text.RegularExpressions" are not directly referenced in our code base and thus we could n't upgrade them to latest and resolve these issues. Is this something, ABP can do upgrade of framework code base in order for us to address these issues. Below are the vulnerabilities reported -
Denial of Service (DoS) Improper Certificate Validation Information Exposure Regular Expression Denial of Service (ReDoS) Privilege Escalation Authentication Bypass
Vulnerable module: System.Net.Http Introduced through: xunit.extensibility.execution@2.4.1 and xunit@2.4.1 Exploit maturity: No known exploit Fixed in: 4.1.2, 4.3.2 Introduced through: project@* › xunit.extensibility.execution@2.4.1 › NETStandard.Library@1.6.1 › System.Net.Http@4.3.0 Introduced through: project@* › xunit@2.4.1 › xunit.assert@2.4.1 › NETStandard.Library@1.6.1 › System.Net.Http@4.3.0 Introduced through: project@* › xunit.extensibility.execution@2.4.1 › xunit.extensibility.core@2.4.1 › NETStandard.Library@1.6.1 › System.Net.Http@4.3.0
Vulnerable module: System.Text.RegularExpressions Introduced through: meta-common-packages@meta Exploit maturity: No known exploit Fixed in: 4.3.1 Introduced through: project@* › meta-common-packages@meta › System.Text.RegularExpressions@4.3.0
- Steps to reproduce the issue:
Check the docs before asking a question: https://docs.abp.io/en/commercial/latest/ Check the samples, to see the basic tasks: https://docs.abp.io/en/commercial/latest/samples/index The exact solution to your question may have been answered before, please use the search on the homepage.
- ABP Framework version: v3.0.4
- UI type: Angular
- Tiered (MVC) or Identity Server Seperated (Angular): yes
- Exception message and stack trace: We are trying to create Rest API using AWS API gateway but when trying to import swagger definition of our API, it gives the validation error as mentioned below -
* {
"messages": [
"attribute components.schemas.Schema name Volo.Abp.Application.Dtos.PagedResultDto`1[[SCV.Litmus.InvoiceManagement.Batches.BatchDto, SCV.Litmus.InvoiceManagement.Application.Contracts, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]] doesn't adhere to regular expression ^[a-zA-Z0-9\\.\\-_]+$",
"attribute components.schemas.Schema name Volo.Abp.Application.Dtos.PagedResultDto`1[[SCV.Litmus.InvoiceManagement.Invoices.InvoiceByStatusDto, SCV.Litmus.InvoiceManagement.Application.Contracts, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]] doesn't adhere to regular expression ^[a-zA-Z0-9\\.\\-_]+$",
"attribute components.schemas.Schema name Volo.Abp.Application.Dtos.PagedResultDto`1[[SCV.Litmus.InvoiceManagement.CreditNotes.CreditNoteByStatusDto, SCV.Litmus.InvoiceManagement.Application.Contracts, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]] doesn't adhere to regular expression ^[a-zA-Z0-9\\.\\-_]+$",
"attribute components.schemas.Schema name Volo.Abp.Application.Dtos.PagedResultDto`1[[SCV.Litmus.InvoiceManagement.Batches.GetBatchDetailDto, SCV.Litmus.InvoiceManagement.Application.Contracts, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]] doesn't adhere to regular expression ^[a-zA-Z0-9\\.\\-_]+$",
"attribute components.schemas.Schema name Volo.Abp.Application.Dtos.PagedResultDto`1[[SCV.Litmus.InvoiceManagement.Invoices.InvoiceDto, SCV.Litmus.InvoiceManagement.Application.Contracts, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]] doesn't adhere to regular expression ^[a-zA-Z0-9\\.\\-_]+$",
"attribute components.schemas.Schema name Volo.Abp.Application.Dtos.PagedResultDto`1[[SCV.Litmus.InvoiceManagement.Quotes.QuoteDto, SCV.Litmus.InvoiceManagement.Application.Contracts, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]] doesn't adhere to regular expression ^[a-zA-Z0-9\\.\\-_]+$",
"attribute components.schemas.Schema name Volo.Abp.Application.Dtos.PagedResultDto`1[[SCV.Litmus.InvoiceManagement.Samples.SampleDto, SCV.Litmus.InvoiceManagement.Application.Contracts, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]] doesn't adhere to regular expression ^[a-zA-Z0-9\\.\\-_]+$"
]
}
Steps to reproduce the issue: Attached is the class file for one object "BatchDto.cs". Kindly suggest what's wrong with the class implementation and steps to resolve.
using System;
using Volo.Abp.Application.Dtos;
namespace SCV.Litmus.InvoiceManagement.Batches
{
public class BatchDto : FullAuditedEntityDto<Guid>
{
public string BatchNumber { get; set; }
public Guid SupplierId { get; set; }
public Guid BusinessEntityId { get; set; }
public int CurrencyId { get; set; }
public string Description { get; set; }
public double RequestedFinanceAmount { get; set; }
public string BenchMark { get; set; }
public double MarginRate { get; set; }
public double InvoiceTotalAmount { get; set; }
public double CreditNoteTotalAmount { get; set; }
public double NetFinanceAmount { get; set; }
public DateTime BatchCreationDate { get; set; }
}
}