I upgraded my rc.2 project to rc.3 using the 5.3.4 version of the CLI and the switch-to-preview command. After it updated the package references from rc.2 to rc.3, I am getting the following error trying to run a dotnet restore command on the aspnet-core solution.
This project was created with the Lepton-X theme using the rc.2 version of Suite.
Determining projects to restore... C:\appdev\otised\anlar.everest\aspnet-core\src\Anlar.Everest.HttpApi.Host\Anlar.Everest.HttpApi.Host.csproj : error NU1 102: Unable to find package Volo.Abp.AspNetCore.Mvc.UI.Theme.LeptonX with version (>= 6.0.0-rc.3) [C:\appdev\otised\anl ar.everest\aspnet-core\Anlar.Everest.sln] C:\appdev\otised\anlar.everest\aspnet-core\src\Anlar.Everest.HttpApi.Host\Anlar.Everest.HttpApi.Host.csproj : error NU1 102: - Found 6 version(s) in ABP Commercial NuGet Source [ Nearest version: 1.0.0-rc.3 ] [C:\appdev\otised\anlar.ever est\aspnet-core\Anlar.Everest.sln] C:\appdev\otised\anlar.everest\aspnet-core\src\Anlar.Everest.HttpApi.Host\Anlar.Everest.HttpApi.Host.csproj : error NU1 102: - Found 0 version(s) in Microsoft Visual Studio Offline Packages [C:\appdev\otised\anlar.everest\aspnet-core\Anl ar.Everest.sln] C:\appdev\otised\anlar.everest\aspnet-core\src\Anlar.Everest.HttpApi.Host\Anlar.Everest.HttpApi.Host.csproj : error NU1 102: - Found 0 version(s) in nuget.org [C:\appdev\otised\anlar.everest\aspnet-core\Anlar.Everest.sln] C:\appdev\otised\anlar.everest\aspnet-core\src\Anlar.Everest.HttpApi.Host\Anlar.Everest.HttpApi.Host.csproj : error NU1 102: - Found 0 version(s) in github [C:\appdev\otised\anlar.everest\aspnet-core\Anlar.Everest.sln] C:\appdev\otised\anlar.everest\aspnet-core\src\Anlar.Everest.HttpApi.Host\Anlar.Everest.HttpApi.Host.csproj : error NU1 102: - Found 0 version(s) in OtisEd Private Nuget [C:\appdev\otised\anlar.everest\aspnet-core\Anlar.Everest.sln] C:\appdev\otised\anlar.everest\aspnet-core\src\Anlar.Everest.HttpApi.Host\Anlar.Everest.HttpApi.Host.csproj : error NU1 102: - Found 0 version(s) in ABP Nightly [C:\appdev\otised\anlar.everest\aspnet-core\Anlar.Everest.sln] C:\appdev\otised\anlar.everest\aspnet-core\src\Anlar.Everest.HttpApi.Host\Anlar.Everest.HttpApi.Host.csproj : error NU1 102: - Found 0 version(s) in BlazoriseMyGet [C:\appdev\otised\anlar.everest\aspnet-core\Anlar.Everest.sln] Failed to restore C:\appdev\otised\anlar.everest\aspnet-core\src\Anlar.Everest.HttpApi.Host\Anlar.Everest.HttpApi.Hos t.csproj (in 11.57 sec). 13 of 14 projects are up-to-date for restore.
Steps to Reproduce
The returned page is not formatted properly and I get the following errors in the console of the browser.
The login page works, but the styling is missing due to the errors above.
I was able to resolve the issue for Azure App Service with the following code:
Added to PreConfigureServices in *HttpApiHostModule
#if RELEASE
PreConfigure<AbpOpenIddictAspNetCoreOptions>(options => options.AddDevelopmentEncryptionAndSigningCertificate = false);
string encryptionThumbprint = "******************";
string signingThumbprint = "**************";
var encryptionCertificate = GetX509Certificate2(encryptionThumbprint);
var signingCertificate = GetX509Certificate2(signingThumbprint);
PreConfigure<OpenIddictServerBuilder>(builder =>
{
builder.AddEncryptionCertificate(encryptionCertificate);
builder.AddSigningCertificate(signingCertificate);
});
#endif
helper method referenced above
private X509Certificate2 GetX509Certificate2(string thumbprint)
{
bool validOnly = false;
using var store = new X509Store(StoreName.My, StoreLocation.CurrentUser);
store.Open(OpenFlags.ReadOnly);
var collection = store.Certificates.Find(X509FindType.FindByThumbprint, thumbprint, validOnly);
var certificate = collection.OfType<X509Certificate2>().FirstOrDefault();
store.Close();
return certificate ?? throw new Exception($"Cannot find certificate with thumbprint {thumbprint}");
}
The self-signed certificates were generated based on the documentation available on https://documentation.openiddict.com/configuration/encryption-and-signing-credentials.html.
The certificates must be generated with a password instead of the empty password in the example in order for you to upload the PFX file to the Azure App Service.
You must also set the configuration setting for WEBSITE_LOAD_CERTIFICATES on the Azure App Service to either be * to load all certificates or have a comma separated list of certificates you want loaded.
I found this in the OpenIddict documentation. https://documentation.openiddict.com/configuration/encryption-and-signing-credentials.html. This should be included in the deployment documentation for the new version and referenced in the release notes.
I am getting the same error deploying the application to an Azure App Service. This is a release configuration so I am not expecting to install a developer certificate. What am I missing here? The App Service has an SSL certificate bound to a custom domain being used for the site.
@liangshiwei I am not following your answer. The default code provided in the template application exhibited the problem described above in my initial post. Are you saying that the initial application has a problem or the changes I highlighted are a problem. Please note, it was not working until I made the changes I highlighted. It is working as expected after those changes.
As a follow up, I made a couple of changes to the Swagger application configuration and it now works. I am not sure why this change removed the windows authentication prompt, but the result now matches the user experience we had with identity server.
I changed the client type to confidential and added a configuration variable to set the secret. With this in place, things now work just like they did in 5.x for me.
Trying to authorize from the Swagger UI is giving errors which I have not seen before. If I launch the angular project and login, I can eventually get the swagger UI to authenticate but only because I am already logged in.
This is the first error I received.
This is the second issue I encountered. Notice the windows login prompt for accessing the site. If I am already logged in via Angular, I can hit cancel on this and I have access to the authorized endpoints. However, nothing I enter in the prompted authentication works so far.
Is there a workaround prior to RC2?
I noticed a second issue after I opened the dotnet solution. Even though I specified the option "none" for mobile. It still created a .NET MAUI project in the solution.