IdentityServer4.FreeSql 持久化实现
前言
故事是这样开始的:
然后突然又来了句...
扪心自问自从不知道怎么当了 FreeSql 开发群 (QQ群号:4336577) 的管理以来, 几乎没有给 FreeSql 做过什么贡献...惭愧惭愧.
借此机会, 似乎可以做点什么.
整起来
根据官方文档描述, 如要实现自定义存储, 需要实现这3个接口, 它们分别是 IClientStore, IPersistedGrantStore, IResourceStore
新建一个项目 IdentityServer4.FreeSql.
然后新建一个目录 Stores, 用来放置几个接口的实现类.
新建实现类, 它们分别是 ClientStore.cs, PersistedGrantStore.cs, ResourceStore.cs
各自的实现代码如下:
// ClientStore.cs
using FreeSql;
using IdentityServer4.FreeSql.Interfaces;
using IdentityServer4.FreeSql.Mappers;
using IdentityServer4.Models;
using IdentityServer4.Stores;
using Microsoft.Extensions.Logging;
using System;
using System.Threading.Tasks;
namespace IdentityServer4.FreeSql.Stores
{
public class ClientStore : IClientStore
{
///
/// 数据库上下文
///
protected readonly IConfigurationDbContext Context;
///
/// 日志
///
protected readonly ILogger Logger;
///
/// 初始化一个 <参阅 cref="ClientStore"/> 类的新实例.
///
/// 数据库上下文
/// 日志
/// context
public ClientStore(IConfigurationDbContext context, ILogger logger)
{
Context = context ?? throw new ArgumentNullException(paramName: nameof(context));
Logger = logger;
}
///
/// 通过客户端标识查找客户端
///
/// 客户端标识
/// 客户端
public virtual async Task FindClientByIdAsync(string clientId)
{
ISelect baseQuery = Context.Clients
.Where(x => x.ClientId == clientId)
.Take(1);
var client = await baseQuery.ToOneAsync();
if (client == null) return null;
await baseQuery.Include(x => x.AllowedCorsOrigins).IncludeMany(c => c.AllowedCorsOrigins).ToListAsync();
await baseQuery.Include(x => x.AllowedGrantTypes).IncludeMany(c => c.AllowedGrantTypes).ToListAsync();
await baseQuery.Include(x => x.AllowedScopes).IncludeMany(c => c.AllowedScopes).ToListAsync();
await baseQuery.Include(x => x.Claims).IncludeMany(c => c.Claims).ToListAsync();
await baseQuery.Include(x => x.ClientSecrets).IncludeMany(c => c.ClientSecrets).ToListAsync();
await baseQuery.Include(x => x.IdentityProviderRestrictions).IncludeMany(c => c.IdentityProviderRestrictions).ToListAsync();
await baseQuery.Include(x => x.PostLogoutRedirectUris).IncludeMany(c => c.PostLogoutRedirectUris).ToListAsync();
await baseQuery.Include(x => x.Properties).IncludeMany(c => c.Properties).ToListAsync();
await baseQuery.Include(x => x.RedirectUris).IncludeMany(c => c.RedirectUris).ToListAsync();
var model = client.ToModel();
Logger.LogDebug("{clientId} found in database: {clientIdFound}", clientId, model != null);
return model;
}
}
}
// PersistedGrantStore.cs
using System.Collections.Generic;
using System;
using System.Linq;
using System.Threading.Tasks;
using IdentityServer4.FreeSql.Interfaces;
using IdentityServer4.FreeSql.Mappers;
using IdentityServer4.Models;
using IdentityServer4.Stores;
using Microsoft.Extensions.Logging;
using FreeSql;
namespace IdentityServer4.FreeSql.Stores
{
///
/// Implementation of IPersistedGrantStore thats uses FreeSql.
///
///
/// The DbContext.
///
protected readonly IPersistedGrantDbContext Context;
///
/// The logger.
///
protected readonly ILogger Logger;
///
/// Initializes a new instance of the
/// The context.
/// The logger.
public PersistedGrantStore(IPersistedGrantDbContext context, ILogger logger)
{
Context = context;
Logger = logger;
}
///
/// Stores the asynchronous.
///
/// The token.
///
/// Gets the grant.
///
/// The key.
/// GetAsync(string key)
{
var persistedGrant = await Context.PersistedGrants.Where(x => x.Key == key).ToOneAsync();
var model = persistedGrant?.ToModel();
Logger.LogDebug("{persistedGrantKey} found in database: {persistedGrantKeyFound}", key, model != null);
return model;
}
///
/// Gets all grants for a given subject id.
///
/// The subject identifier.
/// > GetAllAsync(string subjectId)
{
var persistedGrants = await Context.PersistedGrants.Where(x => x.SubjectId == subjectId).ToListAsync();
var model = persistedGrants.Select(x => x.ToModel());
Logger.LogDebug("{persistedGrantCount} persisted grants found for {subjectId}", persistedGrants.Count, subjectId);
return model;
}
///
/// Removes the grant by key.
///
/// The key.
///
/// Removes all grants for a given subject id and client id combination.
///
/// The subject identifier.
/// The client identifier.
///
/// Removes all grants of a give type for a given subject id and client id combination.
///
/// The subject identifier.
/// The client identifier.
/// The type.
/// // ResourceStore.cs
using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using IdentityServer4.FreeSql.Interfaces;
using IdentityServer4.FreeSql.Mappers;
using IdentityServer4.Models;
using IdentityServer4.Stores;
using FreeSql;
using Microsoft.Extensions.Logging;
namespace IdentityServer4.FreeSql.Stores
{
///
/// Implementation of IResourceStore thats uses FreeSql.
///
///
/// The DbContext.
///
protected readonly IConfigurationDbContext Context;
///
/// The logger.
///
protected readonly ILogger Logger;
///
/// Initializes a new instance of the
/// The context.
/// The logger.
/// context
public ResourceStore(IConfigurationDbContext context, ILogger logger)
{
Context = context ?? throw new ArgumentNullException(nameof(context));
Logger = logger;
}
///
/// Finds the API resource by name.
///
/// The name.
/// FindApiResourceAsync(string name)
{
var query =
from apiResource in Context.ApiResources
where apiResource.Name == name
select apiResource;
var apis = query
.IncludeMany(x => x.Secrets)
.IncludeMany(x => x.Scopes, then => then.IncludeMany(s => s.UserClaims))
.IncludeMany(x => x.UserClaims)
.IncludeMany(x => x.Properties);
var api = await apis.ToOneAsync();
if (api != null)
{
Logger.LogDebug("Found {api} API resource in database", name);
}
else
{
Logger.LogDebug("Did not find {api} API resource in database", name);
}
return api.ToModel();
}
///
/// Gets API resources by scope name.
///
///
/// > FindApiResourcesByScopeAsync(IEnumerable scopeNames)
{
var names = scopeNames.ToArray();
var query =
from api in Context.ApiResources
where api.Scopes.Where(x => names.Contains(x.Name)).Any()
select api;
var apis = query
.IncludeMany(x => x.Secrets)
.IncludeMany(x => x.Scopes, then => then.IncludeMany(s => s.UserClaims))
.IncludeMany(x => x.UserClaims)
.IncludeMany(x => x.Properties);
var results = await apis.ToListAsync();
var models = results.Select(x => x.ToModel()).ToArray();
Logger.LogDebug("Found {scopes} API scopes in database", models.SelectMany(x => x.Scopes).Select(x => x.Name));
return models;
}
///
/// Gets identity resources by scope name.
///
///
/// > FindIdentityResourcesByScopeAsync(IEnumerable scopeNames)
{
var scopes = scopeNames.ToArray();
var query =
from identityResource in Context.IdentityResources
where scopes.Contains(identityResource.Name)
select identityResource;
/*
var resources = query
.Include(x => x.UserClaims)
.Include(x => x.Properties)
.AsNoTracking();
*/
var resources = query
.IncludeMany(x => x.UserClaims)
.IncludeMany(x => x.Properties);
var results = await resources.ToListAsync();
Logger.LogDebug("Found {scopes} identity scopes in database", results.Select(x => x.Name));
return results.Select(x => x.ToModel()).ToArray();
}
///
/// Gets all resources.
///
/// GetAllResourcesAsync()
{
/*
var identity = Context.IdentityResources
.Include(x => x.UserClaims)
.Include(x => x.Properties);
*/
var identity = Context.IdentityResources.Select
.IncludeMany(x => x.UserClaims)
.IncludeMany(x => x.Properties);
/*
var apis = Context.ApiResources
.Include(x => x.Secrets)
.Include(x => x.Scopes)
.ThenInclude(s => s.UserClaims)
.Include(x => x.UserClaims)
.Include(x => x.Properties)
.AsNoTracking();
*/
var apis = Context.ApiResources.Select
.IncludeMany(x => x.Secrets)
.IncludeMany(x => x.Scopes, then => then.IncludeMany(s => s.UserClaims))
.IncludeMany(x => x.UserClaims)
.IncludeMany(x => x.Properties);
var result = new Resources(
(await identity.ToListAsync()).Select(x => x.ToModel()),
(await apis.ToListAsync()).Select(x => x.ToModel())
);
Logger.LogDebug("Found {scopes} as all scopes in database", result.IdentityResources.Select(x => x.Name).Union(result.ApiResources.SelectMany(x => x.Scopes).Select(x => x.Name)));
return result;
}
}
}
这里没有直接用 FreeSql 的 DbContext 对象, 而是抽象了一层 IConfigurationDbContext 和 IPersistedGrantDbContext 以便用接口约束需要的方法集.
// IConfigurationDbContext.cs
using System;
using System.Collections.Generic;
using System.Text;
using System.Threading.Tasks;
using FreeSql;
using IdentityServer4.FreeSql.Entities;
namespace IdentityServer4.FreeSql.Interfaces
{
///
/// 配置上下文的抽象
///
/// <可参阅 cref="System.IDisposable">
public interface IConfigurationDbContext : IDisposable
{
///
/// Gets or sets the clients.
///
///
/// The clients.
///
DbSet Clients { get; set; }
///
/// Gets or sets the identity resources.
///
///
/// The identity resources.
///
DbSet IdentityResources { get; set; }
///
/// Gets or sets the API resources.
///
///
/// The API resources.
///
DbSet ApiResources { get; set; }
///
/// Saves the changes.
///
///
/// Saves the changes.
///
/// SaveChangesAsync();
}
}
// IPersistedGrantDbContext.cs
using System;
using System.Threading.Tasks;
using IdentityServer4.FreeSql.Entities;
using FreeSql;
namespace IdentityServer4.FreeSql.Interfaces
{
///
/// Abstraction for the operational data context.
///
///
/// Gets or sets the persisted grants.
///
///
/// The persisted grants.
///
DbSet PersistedGrants { get; set; }
///
/// Gets or sets the device flow codes.
///
///
/// The device flow codes.
///
DbSet DeviceFlowCodes { get; set; }
///
/// Saves the changes.
///
///
/// Saves the changes.
///
/// SaveChangesAsync();
}
}
当然了不要忘了我们的日志 ILogger 和 ILogger, 方便后续我们跟踪调试.
数据库上下文
新建一个目录 DbContexts, 用来放置我们需要实现的数据库上下文类 ConfigurationDbContext 和 PersistedGrantDbContext.
非常幸运的是, FreeSql 有对应 EntityFramework DbContext 类似的实现, 叫 FreeSql.DbContext, 又省了不少事.
实现如下:
// ConfigurationDbContext.cs
using FreeSql;
using IdentityServer4.FreeSql.Entities;
using IdentityServer4.FreeSql.Interfaces;
using IdentityServer4.FreeSql.Options;
using System;
using System.Threading.Tasks;
namespace IdentityServer4.FreeSql.DbContexts
{
///
/// DbContext for the IdentityServer configuration data.
///
///
{
///
/// Initializes a new instance of the
/// The options.
/// The store options.
/// storeOptions
public ConfigurationDbContext(IFreeSql freeSql, ConfigurationStoreOptions storeOptions)
: base(freeSql, storeOptions)
{
}
}
///
/// DbContext for the IdentityServer configuration data.
///
/// : DbContext, IConfigurationDbContext
where TContext : DbContext, IConfigurationDbContext
{
private readonly IFreeSql freeSql;
//private readonly DbContextOptions options;
private readonly ConfigurationStoreOptions storeOptions;
///
/// Initializes a new instance of the
/// The options.
/// The store options.
/// storeOptions
public ConfigurationDbContext(IFreeSql freeSql, ConfigurationStoreOptions storeOptions)
: base(freeSql, null)
{
this.freeSql = freeSql;
this.storeOptions = storeOptions ?? throw new ArgumentNullException(nameof(storeOptions));
}
///
/// Gets or sets the clients.
///
///
/// The clients.
///
public DbSet Clients { get; set; }
///
/// Gets or sets the identity resources.
///
///
/// The identity resources.
///
public DbSet IdentityResources { get; set; }
///
/// Gets or sets the API resources.
///
///
/// The API resources.
///
public DbSet ApiResources { get; set; }
///
/// Saves the changes.
///
/// SaveChangesAsync()
{
return await base.SaveChangesAsync();
}
///
/// Override this method to further configure the model that was discovered by convention from the entity types
/// exposed in
/// The builder being used to construct the model for this context. Databases (and other extensions) typically
/// define extension methods on this object that allow you to configure aspects of the model that are specific
/// to a given database.
///
/// If a model is explicitly set on the options for this context (via
//protected override void OnModelCreating(ModelBuilder modelBuilder)
//{
// modelBuilder.ConfigureClientContext(storeOptions);
// modelBuilder.ConfigureResourcesContext(storeOptions);
// base.OnModelCreating(modelBuilder);
//}
protected override void OnConfiguring(DbContextOptionsBuilder builder)
{
builder.UseFreeSql(orm: freeSql);
//builder.UseOptions(options: options);
base.OnConfiguring(builder);
}
}
}
// PersistedGrantDbContext.cs
using System;
using System.Threading.Tasks;
using IdentityServer4.FreeSql.Entities;
using IdentityServer4.FreeSql.Interfaces;
using IdentityServer4.FreeSql.Options;
using FreeSql;
namespace IdentityServer4.FreeSql.DbContexts
{
///
/// DbContext for the IdentityServer operational data.
///
///
{
///
/// Initializes a new instance of the
/// The options.
/// The store options.
/// storeOptions
public PersistedGrantDbContext(IFreeSql freeSql, OperationalStoreOptions storeOptions)
: base(freeSql, storeOptions)
{
}
}
///
/// DbContext for the IdentityServer operational data.
///
/// : DbContext, IPersistedGrantDbContext
where TContext : DbContext, IPersistedGrantDbContext
{
private readonly IFreeSql freeSql;
private readonly OperationalStoreOptions storeOptions;
///
/// Initializes a new instance of the
/// The options.
/// The store options.
/// storeOptions
public PersistedGrantDbContext(IFreeSql freeSql, OperationalStoreOptions storeOptions)
:base(freeSql, null)
{
this.freeSql = freeSql;
if (storeOptions == null) throw new ArgumentNullException(nameof(storeOptions));
this.storeOptions = storeOptions;
}
///
/// Gets or sets the persisted grants.
///
///
/// The persisted grants.
///
public DbSet PersistedGrants { get; set; }
///
/// Gets or sets the device codes.
///
///
/// The device codes.
///
public DbSet DeviceFlowCodes { get; set; }
///
/// Saves the changes.
///
/// SaveChangesAsync()
{
return await base.SaveChangesAsync();
}
///
/// Override this method to further configure the model that was discovered by convention from the entity types
/// exposed in
/// The builder being used to construct the model for this context. Databases (and other extensions) typically
/// define extension methods on this object that allow you to configure aspects of the model that are specific
/// to a given database.
///
/// If a model is explicitly set on the options for this context (via
//protected override void OnModelCreating(ModelBuilder modelBuilder)
//{
// modelBuilder.ConfigurePersistedGrantContext(storeOptions);
// base.OnModelCreating(modelBuilder);
//}
protected override void OnConfiguring(DbContextOptionsBuilder builder)
{
builder.UseFreeSql(orm: freeSql);
//builder.UseOptions(options);
base.OnConfiguring(builder);
}
}
}
实体模型
IdentityServer4 的实体及属性有辣么多...
这里为了方便, 直接整个 Entities 目录从 IdentityServer4.EntityFramework 里拷贝过来.
扩展方法和配置选项
我们需要提供选项功能, 以便你在注入和使用有可调整的控制能力.
有以下几项必须实现
- FreeSql 实例的构造注入, 这点跟 EntityFramework 只有一个 DbContext 不同, FreeSql 和 FreeSql.DbContext 是 2 个分开的对象
- IdentityServer4.EntityFramework 中已经提供的最佳实践配置项, 毕竟过来人.
- 提供注入服时必需的扩展方法, 不然你还得手动 new ...
- ...
集成测试
这里用的是传说中的用户测试大法(我自己)...先用 SQLite 试试水
这里用 FreeSql 的 CodeFirst 模式, 自动生成数据结构.
- 新建一个 ASP.NET Core 应用程序;
- 添加依赖
IdentityServer4.FreeSql - 添加依赖
FreeSql和驱动提供器FreeSql.Provider.Sqlite - 在
Startup.cs里实例化 FreeSql, 注入服务 - ...
看下集成测试的项目文件:
// IdentityServer4.FreeSql.IntegrationTest.csproj
netcoreapp3.1
再来看看 Startup.cs 中的 FreeSql 实例化以及 IdentityServer4.FreeSql 的服务配置注入.
// Startup.cs
using System;
using System.Collections.Generic;
using System.Diagnostics;
using System.Linq;
using System.Threading.Tasks;
using FreeSql;
using IdentityServer4.FreeSql.DbContexts;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.Hosting;
using Microsoft.AspNetCore.Http;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Hosting;
//using IdentityServer4.FreeSql;
namespace IdentityServer4.FreeSql.IntegrationTest
{
public class Startup
{
// This method gets called by the runtime. Use this method to add services to the container.
// For more information on how to configure your application, visit https://go.microsoft.com/fwlink/?LinkID=398940
public void ConfigureServices(IServiceCollection services)
{
var freeSqlC = new FreeSqlBuilder()
.UseConnectionString(DataType.Sqlite, @"Data Source=|DataDirectory|\idsr_freesql_config.db;Pooling=true;Max Pool Size=10")
.UseAutoSyncStructure(true)
.UseNoneCommandParameter(true)
.UseMonitorCommand(cmd => Trace.WriteLine(cmd.CommandText))
.Build();
var freeSqlO = new FreeSqlBuilder()
.UseConnectionString(DataType.Sqlite, @"Data Source=|DataDirectory|\idsr_freesql_op.db;Pooling=true;Max Pool Size=10")
.UseAutoSyncStructure(true)
.UseNoneCommandParameter(true)
.UseMonitorCommand(cmd => Trace.WriteLine(cmd.CommandText))
.Build();
services.AddSingleton>(freeSqlC);
services.AddSingleton>(freeSqlO);
services.AddIdentityServer()
.AddConfigurationStore(options =>
{
options.ConfigureDbContext = builder => builder.UseFreeSql(orm: freeSqlC);
})
.AddOperationalStore(options =>
{
options.ConfigureDbContext = builder => builder.UseFreeSql(orm: freeSqlO);
// this enables automatic token cleanup. this is optional.
options.EnableTokenCleanup = true;
options.TokenCleanupInterval = 3600; // interval in seconds (default is 3600)
});
}
// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
public void Configure(IApplicationBuilder app, IWebHostEnvironment env)
{
if (env.IsDevelopment())
{
app.UseDeveloperExceptionPage();
}
app.UseRouting();
app.UseIdentityServer();
app.UseEndpoints(endpoints =>
{
endpoints.MapGet("/", async context =>
{
await context.Response.WriteAsync("Hello World!");
});
});
}
}
}
先来几个效果图:
CodeFirst 生成的 2 个 SQLite 数据库:
可以有效访问的发现端点以及对应的查询 SQL 日志:
更多内容
留待下回分解...~其实是其他的还没测试~
源码后续能见人了...也会放出来给大家溜溜
源码在这 IdentityServer4.FreeSql 不要问我为什么用 gitee, 仅仅是因为对于大多数人而言国内访问更快
参考
- IdentityServer4 源码 - 内含 IdentityServer4.EntityFramework 的源码, 极具参考意义.
- IdentityServer4.Dapper - 顾名思义
- 使用Dapper持久化IdentityServer4
- FreeSql
- Using EntityFramework Core for configuration and operational data
- Entity Framework Support