配置调整

2026-02-21 16:29:56 +08:00 · 2026-02-21 16:29:56 +08:00 · bbdd88e6a1
commit bbdd88e6a1
parent d2adce6030
1 changed files with 144 additions and 26 deletions
--- a/Fengling.Platform.Infrastructure/SeedData.cs
+++ b/Fengling.Platform.Infrastructure/SeedData.cs
@ -3,13 +3,13 @@ using Fengling.Platform.Domain.AggregatesModel.TenantAggregate;
 using Fengling.Platform.Domain.AggregatesModel.UserAggregate;
 using Microsoft.AspNetCore.Identity;
 using Microsoft.Extensions.DependencyInjection;
+using OpenIddict.Abstractions;

 namespace Fengling.Platform.Infrastructure;

 public static class SeedData
 {
-    
-    public static async Task<Tenant> InitializeAsync(this IServiceScope scope)
+    public static async Task InitializeAsync(this IServiceScope scope)
    {
        var userManager = scope.ServiceProvider.GetRequiredService<UserManager<ApplicationUser>>();
        var roleManager = scope.ServiceProvider.GetRequiredService<RoleManager<ApplicationRole>>();
@ -19,11 +19,8 @@ public static class SeedData

        var adminTenant = context.Tenants
            .FirstOrDefault(t => t.TenantCode == "Administrator");
-        if (adminTenant != null)
+        if (adminTenant == null)
        {
-            return adminTenant;
-        }
-
            adminTenant = new Tenant
            {
                TenantCode = "Administrator",
@ -34,6 +31,9 @@ public static class SeedData
                CreatedAt = DateTime.UtcNow
            };
            await context.Tenants.AddAsync(adminTenant);
+        }
+
+        


        var role = await roleManager.Roles
@ -55,7 +55,7 @@ public static class SeedData
        }

        var user = await userManager.FindByNameAsync("admin");
-        if (user != null)
+        if (user == null)
        {
            user = new ApplicationUser()
            {
@ -63,14 +63,132 @@ public static class SeedData
                RealName = "系统超级管理员",
                Email = "samsu9194@163.com",
                TenantInfo = new TenantInfo(adminTenant),
-                PhoneNumber = "15921072307"
+                PhoneNumber = "15921072307",
+                SecurityStamp =  Guid.NewGuid().ToString(),
            };
+            await userManager.CreateAsync(user, "Admin@123");
            await userManager.AddToRoleAsync(user, "admin");
-            await userManager.CreateAsync(user, "admin");
        }


        await context.SaveChangesAsync();
-        return adminTenant;
+
+        await InitializeOpenIddictAsync(scope.ServiceProvider);
+
+    }
+
+    private static async Task InitializeOpenIddictAsync(IServiceProvider serviceProvider)
+    {
+        var applicationManager = serviceProvider.GetRequiredService<IOpenIddictApplicationManager>();
+        var scopeManager = serviceProvider.GetRequiredService<IOpenIddictScopeManager>();
+
+        await RegisterCustomScopesAsync(scopeManager);
+        await RegisterVbenConsoleClientAsync(applicationManager);
+        await RegisterSwaggerClientAsync(applicationManager);
+    }
+
+    private static async Task RegisterCustomScopesAsync(IOpenIddictScopeManager scopeManager)
+    {
+        var fenglingApiScope = await scopeManager.FindByNameAsync("fengling_api");
+        if (fenglingApiScope == null)
+        {
+            await scopeManager.CreateAsync(new OpenIddictScopeDescriptor
+            {
+                Name = "fengling_api",
+                DisplayName = "Fengling API Access",
+                Description = "Allow access to Fengling API resources"
+            });
+        }
+
+        var authServerAdminScope = await scopeManager.FindByNameAsync("auth_server_admin");
+        if (authServerAdminScope == null)
+        {
+            await scopeManager.CreateAsync(new OpenIddictScopeDescriptor
+            {
+                Name = "auth_server_admin",
+                DisplayName = "Auth Server Admin",
+                Description = "Allow access to auth server admin APIs"
+            });
+        }
+    }
+
+    private static async Task RegisterVbenConsoleClientAsync(IOpenIddictApplicationManager applicationManager)
+    {
+        var existingClient = await applicationManager.FindByClientIdAsync("fengling-console");
+        if (existingClient != null)
+        {
+            return;
+        }
+
+        await applicationManager.CreateAsync(new OpenIddictApplicationDescriptor
+        {
+            ClientId = "fengling-console",
+            DisplayName = "Fengling Console (Vben Admin)",
+            RedirectUris =
+            {
+                new Uri("http://localhost:5777/auth/callback"),
+                new Uri("http://localhost:5777")
+            },
+            PostLogoutRedirectUris =
+            {
+                new Uri("http://localhost:5777")
+            },
+            Permissions =
+            {
+                OpenIddictConstants.Permissions.GrantTypes.AuthorizationCode,
+                "hybrid",
+                OpenIddictConstants.Permissions.GrantTypes.RefreshToken,
+                OpenIddictConstants.Permissions.GrantTypes.ClientCredentials,
+
+                OpenIddictConstants.Permissions.Endpoints.Authorization,
+                OpenIddictConstants.Permissions.Endpoints.Token,
+                "userinfo",
+                OpenIddictConstants.Permissions.Endpoints.EndSession,
+
+                "client_secret",
+
+                OpenIddictConstants.Permissions.Scopes.Email,
+                OpenIddictConstants.Permissions.Scopes.Profile,
+                "openid",
+                "offline_access",
+                OpenIddictConstants.Permissions.Scopes.Roles,
+                OpenIddictConstants.Permissions.ResponseTypes.Code,
+                OpenIddictConstants.Permissions.ResponseTypes.CodeIdTokenToken,
+                OpenIddictConstants.Permissions.Prefixes.Scope + "api",
+            },
+            Requirements =
+            {
+                OpenIddictConstants.Requirements.Features.ProofKeyForCodeExchange
+            }
+        });
+    }
+
+    private static async Task RegisterSwaggerClientAsync(IOpenIddictApplicationManager applicationManager)
+    {
+        var existingClient = await applicationManager.FindByClientIdAsync("swagger-ui");
+        if (existingClient != null)
+        {
+            return;
+        }
+
+        await applicationManager.CreateAsync(new OpenIddictApplicationDescriptor
+        {
+            ClientId = "swagger-ui",
+            DisplayName = "Swagger UI",
+            RedirectUris =
+            {
+                new Uri("http://localhost:5231/swagger/oauth2-redirect.html"),
+                new Uri("http://localhost:5511/swagger/oauth2-redirect.html"),
+                new Uri("http://localhost:5132/swagger/oauth2-redirect.html"),
+            },
+            Permissions =
+            {
+                OpenIddictConstants.Permissions.GrantTypes.AuthorizationCode,
+                OpenIddictConstants.Permissions.Endpoints.Authorization,
+                OpenIddictConstants.Permissions.Endpoints.Token,
+                "client_secret",
+                "openid"
+            }
+        });
    }
 }