Hello Team,
I need to come up with a solution to limit access of users to the application, there are a few ways I can extend the entity via https://abp.io/docs/latest/framework/architecture/modularity/extending/module-entity-extensions of users and assign the Application or I can extend the Application and assign the application.
My question is where should I put debut to understand which point the user needs to be checked if that user has access to the application, I was trying to understand the code in: AuthorizeController.cs TokenController.Password.cs TokenController.XXXYY
and found that there is a code:
user = await UserManager.FindByNameAsync(request.Username);
Is this the correct place to intercept if any user is trying to use the Login Form or trying to generate Token by token endpoint?
Many thanks, Navneet
Hello Team,
I have a security requirement, is there any way can I assign IP addresses to OpenIddictApplicatin to allow and block based on IPs?
If something is not available out of the box, Any guide will be helpful like which place I can debug for incoming requests, it needs to be client-based not global access control.
Thanks, Navneet
Hello Abp team,
Could you please guide me on how can I add a PasswordLess OTP grant type in the MVC application?
I have managed to create a checkbox "PasswordLess OTP" in OpenIddictApplication --> Create and Update UI by extending the entity, how to wire up the check box allow PasswordLess OTP grant type
Thanks, Navneet
Hi Abp Team,
Due to EU regulations, I need to deploy Authserver and Web API server to one of the EU regions.
The current Setup is divided into:
Question 1: Is there any way I can deploy Auth and Web Api Host in EU regions with no change to the MVC application as No data is saved in MVC, I want my MVC application to detect if the User is in from EU or Non-EU, if EU then consume EU Auth and WebApiHost, if non-EU then user Australian Auth and WebApiHost server?
Question 2: Abp permissions use only Read, Update, Delete and Create, however when a user has access to Read, it allows all users to same read, I am looking a solution for: - If the User belongs to OU Director -> Allow Access to HR and Accounting Application - If the User belongs to OU HR department -> Allow Access to full HR access. - If the User belongs to OU Accounts -> Access to Accounts full access, but HR Module -> Employees List -> Read Access to non-Director OU. - Shomehow I can user a filter in roles like (x => x.OU == "Director")
Thanks, Navneet
Continuity of question: https://abp.io/support/questions/8602/RequireProofKeyForCodeExchange-PKCE-and-Manual-Ltd#answer-3a175694-eb09-cbb6-b1b4-0619fd9428fb
Hi Abp Team,
As requested, I have created a separate ticket for this:
Could you please help me with the code to add upload to save images in db and show them in the Application Index Page, what is the correct type to save the image (basically it's an Icone), I tried to create a similar in ABP suite, but it creates a Guid property for image 🤷♂️
ConfigureOpenIddict(openIddict = {
openIddict.ConfigureApplication(spp =>
spp.AddOrUpdateProperty( ----> to show upload and show image?
//or
spp.AddOrUpdateProperty(
//or
spp.AddOrUpdateProperty(
"ApplicationIcon"
Many thx, Navneet
Hello Abp team,
Hope I am giving you exciting challenges :-)
I need to pitch a Government Contract and I need to test two requirements before I send the proposal, as per my understanding OpenIddict do support RequireProofKeyForCodeExchange (PKCE) and a security feature Manual-Ltd https://www.rfc-editor.org/rfc/rfc8705
However, I don't know, how I can enable this feature in my ABP MVC Tieried Application.
Can you please suggest, how I can achieve this?
I am extending Openiddict to remove public string LogoUri { get; set; } and replace it with Filetype to allow my clients to upload images by themselves, what is the best way to achieve this to upload and save images in the database? maybe:
ConfigureOpenIddict(openIddict = {
openIddict.ConfigureApplication(spp =>
spp. AddOrUpdateProperty<File>( ----> to show upload and show image?
"ApplicationIcon"
Regards, Navneet
Check the docs before asking a question: https://abp.io/docs/latest
Check the samples to see the basic tasks: https://abp.io/docs/latest/samples
The exact solution to your question may have been answered before, and please first use the search on the homepage.
Provide us with the following info:
🧐 Hint: If you are using the ABP Studio, you can see all the information about your solution from the configuration window, which opens when you right-click on the solution and click on the Solution Configuration button.
Hello Team,
Is there any way I can check if Twilio is not enabled, and doesn't show a phone verification option?
context.Services.RemoveAll(typeof(ICorsPolicyProvider));
context.Services.Add(ServiceDescriptor.Transient<ICorsPolicyProvider, MyCorsPolicyProvider>());
public class MyCorsPolicyProvider : ICorsPolicyProvider
{
Thanks, Navneet
Hi Team,
My client is looking to set CORS from the value saved in DB instead of appsettings.json, I have extended ConfigureApplication class as below:
ConfigureOpenIddict(openIddict = {
openIddict. ConfigureApplication(spp =>
spp. AddOrUpdateProperty<string>(
"AppCORS",
property =>
{
property Attributes. Add(new RequiredAttributeD);
}
);
});
}):
However, I don't know How to move the below code to AppServices.cs
context.Services.AddCors(options =>
{
options.AddDefaultPolicy(builder =>
{
builder
.WithOrigins(
configuration["App:CorsOrigins"]?
.Split(",", StringSplitOptions.RemoveEmptyEntries)
.Select(o => o.Trim().RemovePostFix("/"))
.ToArray() ?? Array.Empty<string>()
)
.WithAbpExposedHeaders()
.SetIsOriginAllowedToAllowWildcardSubdomains()
.AllowAnyHeader()
.AllowAnyMethod()
.AllowCredentials();
});
});
Could you please help here? Thanks, Navneet
Hello team,
I am trying to update the existing Account Pro page with the help of https://abp.io/community/articles/converting-createedit-modal-to-page-4ps5v60m to replace pop-up create and update page with dedicated page
however after adding <div class="abp-view-modal"> and removing Layout = null I am getting below error:
Blocked aria-hidden on an element because its descendant retained focus. The focus must not be hidden from assistive technology users. Avoid using aria-hidden on a focused element or its ancestor. Consider using the inert attribute instead, which will also prevent focus. For more details, see the aria-hidden section of the WAI-ARIA specification at https://w3c.github.io/aria/#aria-hidden.
Element with focus: input
Ancestor with aria-hidden: <div aria-hidden="true" class="modal fade" role="dialog" tabindex="-1">…</div>
Many thx, Navneet
Hello ABP team,
I am getting an error while downloading the source of IdentityServer with CLI abp get-source Volo.Abp.IdentityServer.Pro --version 8.2.3 -- error is Module is not available. I reported this error earlier, can you please look into this?
ABP studio is keep giving errors: 23:08:32.323 Information Trying to connect to ABP Studio Backend: "http://localhost:38271" 23:08:32.324 Warning Could not connect to ABP Studio Backend! Detail: "Failed to connect to StreamingHub 'IStudioBackendHub'. (Status(StatusCode="Unavailable", Detail="Error connecting to subchannel.", DebugException="System.Net.Sockets.SocketException: Connection refused"))"
Thanks, Navneet
