如何解决发布到 IIS 后,无法从 Ocelot 中的“https://localhost:5001/.well-known/openid-configuration”获取配置
我有一个使用 ocelot 的网关,它受到身份服务器 4 的保护,在开发环境中一切正常,但是当我部署到 IIS 时,出现以下错误:
{
"_index": "customergate--2021-02","_type": "_doc","_id": "--ovoHcB2dozJ-qT8WZc","_version": 1,"_score": null,"_source": {
"@timestamp": "2021-02-14T12:57:11.7644568+02:00","level": "Error","messageTemplate": "{State:l}","message": "requestId: 80000125-000a-f900-b63f-84710c7967bb,previousRequestId: no previous request id,message: Exception caught in global error handler,exception message: IDX20803: Unable to obtain configuration from: 'https://localhost:5001/.well-known/openid-configuration'.,exception stack: at Microsoft.IdentityModel.Protocols.ConfigurationManager`1.GetConfigurationAsync(CancellationToken cancel)\r\n at Microsoft.AspNetCore.Authentication.JwtBearer.JwtBearerHandler.HandleAuthenticateAsync()\r\n at Microsoft.AspNetCore.Authentication.JwtBearer.JwtBearerHandler.HandleAuthenticateAsync()\r\n at Microsoft.AspNetCore.Authentication.AuthenticationHandler`1.AuthenticateAsync()\r\n at Microsoft.AspNetCore.Authentication.AuthenticationService.AuthenticateAsync(HttpContext context,String scheme)\r\n at Ocelot.Authentication.Middleware.AuthenticationMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.RequestId.Middleware.RequestIdMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.RateLimit.Middleware.ClientRateLimitMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.Request.Middleware.DownstreamRequestInitialiserMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.Headers.Middleware.HttpHeadersTransformationMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.Security.Middleware.SecurityMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.Multiplexer.MultiplexingMiddleware.Fire(HttpContext httpContext,RequestDelegate next)\r\n at Ocelot.Multiplexer.MultiplexingMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.DownstreamRouteFinder.Middleware.DownstreamRouteFinderMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.Responder.Middleware.ResponderMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.Builder.Extensions.MapWhenMiddleware.Invoke(HttpContext context)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.Errors.Middleware.ExceptionHandlerMiddleware.Invoke(HttpContext httpContext) RequestId: 80000125-000a-f900-b63f-84710c7967bb","exceptions": [
{
"Depth": 0,"ClassName": "System.InvalidOperationException","Message": "IDX20803: Unable to obtain configuration from: 'https://localhost:5001/.well-known/openid-configuration'.","Source": "Microsoft.IdentityModel.Protocols","StackTraceString": " at Microsoft.IdentityModel.Protocols.ConfigurationManager`1.GetConfigurationAsync(CancellationToken cancel)\r\n at Microsoft.AspNetCore.Authentication.JwtBearer.JwtBearerHandler.HandleAuthenticateAsync()\r\n at Microsoft.AspNetCore.Authentication.JwtBearer.JwtBearerHandler.HandleAuthenticateAsync()\r\n at Microsoft.AspNetCore.Authentication.AuthenticationHandler`1.AuthenticateAsync()\r\n at Microsoft.AspNetCore.Authentication.AuthenticationService.AuthenticateAsync(HttpContext context,RequestDelegate next)\r\n at Ocelot.Multiplexer.MultiplexingMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.DownstreamRouteFinder.Middleware.DownstreamRouteFinderMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.Responder.Middleware.ResponderMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.Builder.Extensions.MapWhenMiddleware.Invoke(HttpContext context)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.Errors.Middleware.ExceptionHandlerMiddleware.Invoke(HttpContext httpContext)","RemoteStackTraceString": null,"RemoteStackIndex": 0,"HResult": -2146233079,"HelpURL": null
}
],"fields": {
"State": "requestId: 80000125-000a-f900-b63f-84710c7967bb,"SourceContext": "Ocelot.Errors.Middleware.ExceptionHandlerMiddleware","RequestId": "80000125-000a-f900-b63f-84710c7967bb","RequestPath": "/api/Individual/IndividualUploadState","MachineName": "DESKTOP-AE1JIDV","Environment": null
},"renderings": {
"State": [
{
"Format": "l","Rendering": "requestId: 80000125-000a-f900-b63f-84710c7967bb,RequestDelegate next)\r\n at Ocelot.Multiplexer.MultiplexingMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.DownstreamRouteFinder.Middleware.DownstreamRouteFinderMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.Responder.Middleware.ResponderMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Microsoft.AspNetCore.Builder.Extensions.MapWhenMiddleware.Invoke(HttpContext context)\r\n at Microsoft.AspNetCore.MiddlewareAnalysis.AnalysisMiddleware.Invoke(HttpContext httpContext)\r\n at Ocelot.Errors.Middleware.ExceptionHandlerMiddleware.Invoke(HttpContext httpContext) RequestId: 80000125-000a-f900-b63f-84710c7967bb"
}
]
}
},"fields": {
"@timestamp": [
"2021-02-14T10:57:11.764Z"
]
},"sort": [
1613300231764
]
}
我尝试了与我接受 SSL 证书相关的其他问题的解决方案,但没有奏效。
我的启动代码:
public void ConfigureServices(IServiceCollection services)
{
var requireAuthenticatedUserPolicy = new AuthorizationPolicyBuilder()
.RequireAuthenticatedUser().Build();
JwtSecurityTokenHandler.DefaultMapInboundClaims = false;
var authenticationScheme = "CustomerGatewayAuthenticationScheme";
services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
.AddJwtBearer(authenticationScheme,options =>
{
options.Authority = Configuration["urls:Authority"];
options.Audience = "customergate";
});
services.AddOcelot(Configuration).AddPolly();
services.AddCors();
}
// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
public void Configure(IApplicationBuilder app,IWebHostEnvironment env,ILoggerFactory loggerFactory)
{
if (env.IsDevelopment())
{
app.UseDeveloperExceptionPage();
}
loggerFactory.AddSerilog();
app.UseCors(x => x.AllowAnyOrigin().AllowAnyHeader().AllowAnyMethod());
app.UseOcelot().Wait();
}
解决方法
在生产环境中,默认情况下,您的服务不会侦听启动设置文件中指定的端口 5000/5001。相反,它们默认回退到 80/443。您确定您知道您的身份服务器在哪个域和端口上运行吗? IIS 中为您的 IdentityServer 设置的绑定是否与 IdentityServer 正在侦听的内容相匹配?
版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 dio@foxmail.com 举报,一经查实,本站将立刻删除。