Activities of "liangshiwei"

Hi,

The system cannot find the file specified.

You can check the document: https://docs.abp.io/en/abp/latest/Deployment/Configuring-OpenIddict

Hi,

It works for me. if I missing something, please let me know.

Hi,

Ok, I understand that.

I will check if it is possible

Hi,

Sorry for that,

Please try to add the Volo.Abp.Account.Pro.Shared.Application to the Domain project

    ......
    typeof(AbpAccountSharedApplicationModule)
    )]
public class ....DomainModule : AbpModule

We have an internal issue with this, may be available in next version

We decided to cancel this because of the following reasons

This is a request flow as you mentioned:

Assuming WebApp/SwaggerUI is authenticated and got an access_token and making a request to an endpoint at gateway that automatically redirects to the related microservice (MicroserviceA). In this request, MicroserviceA makes a request to the MicroserviceB using HttpApi.Client and client proxy (or gRPC).

The problem:

• The request is done by a user, since it is coming from Web; it is either Hybrid flow or AuthorizationCode flow. What if the user with the permission to make a request to MicroserviceA doesn't have permission for the MicroserviceB? If you grant permission to user (or role the user has), it will cause different problems on the UI.

Microservice terminology:

Apart from my explanation to this specific approach, the request flow we are discussing is not Synchronous Communication between Microservices

This is the synchronous communication between microservices:

No UI, no user information; two servers talking to each other.

We assume, think or design that microservice with authorization. The oidc standarts for this kind interactions should use client_credentials flow. We have related ABP packages to make it easy to use (Abp.IdentityModel) for it. The problem with authorization is Client_Credentials permission type was in the IdentityServer package which shouldn't be specific to IdentityServer. Client_Credentials is valid for all OIDC providers, so we can simply add it to OpenIddict aswell and keep using it.

Why do we need access_token in the first place?

Since the synchronous communication between microservices happens in an internal network and moreover, the microservice-to-microservice request maybe slightly or completely different from a UI request; it is better to use Integration Services without caring about authentication. It will be created for the only purpose to server internal requests.

Hi,

You can try install the yarn v1.22.19 first: https://classic.yarnpkg.com/lang/en/docs/install/

Hi

You can try run the abp install-libs command on the solution folder

but the page load is not working correctly:

What's the error?

Hi,

ABP does not provide Cosmos DB integration, but there is documentation on how to switch to other DBMS You can check the document:

https://docs.abp.io/en/abp/latest/Entity-Framework-Core-Other-DBMS https://www.nuget.org/packages/Microsoft.EntityFrameworkCore.Cosmos/8.0.2

Is the problem solved?