-
Notifications
You must be signed in to change notification settings - Fork 0
/
Startup.cs
94 lines (82 loc) · 4.29 KB
/
Startup.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
using DevExpress.AspNetCore;
using DevExpress.DashboardAspNetCore;
using DevExpress.DashboardCommon;
using DevExpress.DashboardWeb;
using DevExpress.DataAccess.Sql;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.Hosting;
using Microsoft.AspNetCore.Mvc.ApplicationParts;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.FileProviders;
using Microsoft.Extensions.Hosting;
using System.Linq;
namespace AspNetCoreDashboardPreventCrossSiteRequestForgery {
public class Startup {
public Startup(IConfiguration configuration, IWebHostEnvironment hostingEnvironment) {
DashboardExportSettings.CompatibilityMode = DashboardExportCompatibilityMode.Restricted;
}
// This method gets called by the runtime. Use this method to add services to the container.
public void ConfigureServices(IServiceCollection services) {
services
.AddResponseCompression()
.AddMvc()
.ConfigureApplicationPartManager((manager) => {
var dashboardApplicationParts = manager.ApplicationParts.Where(part => part is AssemblyPart && ((AssemblyPart)part).Assembly == typeof(DashboardController).Assembly).ToList();
foreach (var partToRemove in dashboardApplicationParts) {
manager.ApplicationParts.Remove(partToRemove);
}
});
services
.AddDevExpressControls()
.AddSingleton<CustomDashboardConfigurator>();
services.AddAntiforgery(options => {
// Set Cookie properties using CookieBuilder properties†.
options.FormFieldName = "X-CSRF-TOKEN";
options.HeaderName = "X-CSRF-TOKEN";
options.SuppressXFrameOptionsHeader = false;
});
}
// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
public void Configure(IApplicationBuilder app, IWebHostEnvironment env) {
if(env.IsDevelopment()) {
app.UseDeveloperExceptionPage();
}
else {
app.UseExceptionHandler("/Home/Error");
// The default HSTS value is 30 days. You may want to change this for production scenarios, see https://aka.ms/aspnetcore-hsts.
app.UseHsts();
}
app.UseHttpsRedirection();
app.UseStaticFiles();
app.UseDevExpressControls();
app.UseRouting();
app.UseEndpoints(endpoints => {
endpoints.MapDashboardRoute("dashboardControl", "CustomDashboard");
endpoints.MapRazorPages();
endpoints.MapControllerRoute(
name: "default",
pattern: "{controller=Home}/{action=Index}/{id?}");
});
}
}
public class CustomDashboardConfigurator : DashboardConfigurator {
public CustomDashboardConfigurator(IConfiguration configuration, IWebHostEnvironment hostingEnvironment) {
this.SetConnectionStringsProvider(new DashboardConnectionStringsProvider(configuration));
DashboardFileStorage dashboardFileStorage = new DashboardFileStorage(hostingEnvironment.ContentRootFileProvider.GetFileInfo("Data/Dashboards").PhysicalPath);
this.SetDashboardStorage(dashboardFileStorage);
DataSourceInMemoryStorage dataSourceStorage = new DataSourceInMemoryStorage();
// Registers an SQL data source.
DashboardSqlDataSource sqlDataSource = new DashboardSqlDataSource("SQL Data Source", "NWindConnectionString");
sqlDataSource.DataProcessingMode = DataProcessingMode.Client;
SelectQuery query = SelectQueryFluentBuilder
.AddTable("Categories")
.Join("Products", "CategoryID")
.SelectAllColumns()
.Build("Products_Categories");
sqlDataSource.Queries.Add(query);
dataSourceStorage.RegisterDataSource("sqlDataSource", sqlDataSource.SaveToXml());
this.SetDataSourceStorage(dataSourceStorage);
}
}
}