概述

上文提到3.1版本默认没有使用Hsts,但是使用了这个中间件。看名字就很好理解,https跳转,顾名思义,就是跳转到

https地址。

使用场景,当用户使用http访问网站时,自动跳转到https地址。这样更加安全,不需要用户特意输入https://协议。

具体做了些我们一起来看看。

  app.UseHttpsRedirection();

使用方法

跟Hsts一样,HttpsRedirection默认是不需要注入的,除非你需要修改默认配置。

services.AddHttpsRedirection(config =>

  {

      //https地址的端口号,默认null

      config.HttpsPort = 12345;

      //跳转响应的状态码,默认307

      config.RedirectStatusCode = 302;

  });

直接使用中间件即可

 app.UseHttpsRedirection();

源码解析

源代码很简单,只有两个类:HttpsRedirectionOptions配置类,HttpsRedirectionMiddleware中间件

HttpsRedirectionOptions就只有两个配置项

  /// <summary>

  /// Options for the HttpsRedirection middleware

  /// </summary>

  public class HttpsRedirectionOptions

  {

      /// <summary>

      /// The status code used for the redirect response. The default is 307.

      /// </summary>

      public int RedirectStatusCode { get; set; } = StatusCodes.Status307TemporaryRedirect;

      /// <summary>

      /// The HTTPS port to be added to the redirected URL.

      /// </summary>

      /// <remarks>

      /// If the HttpsPort is not set, we will try to get the HttpsPort from the following:

      /// 1. HTTPS_PORT environment variable

      /// 2. IServerAddressesFeature

      /// If that fails then the middleware will log a warning and turn off.

      /// </remarks>

      public int? HttpsPort { get; set; }

  }

重点看下中间件做了些什么。代码量很少,大体是这些逻辑。

  • 如果请求是Https,跳过本中间件
  • 中间件会依次尝试从这三个地方取端口号:HttpsRedirectionOptions的配置,HttpsRedirectionOptions,HTTPS_PORT环境变量或配置,IServerAddressesFeature(如果Webhost上绑定了https地址,本中间件能够解析出来端口号)。
  • 如果没有解析出来https的端口号,则跳过本中间件。
  • 如果能够解析出来https端口号,则拼接出来https地址,返回307跳转响应报文(或者配置的其他状态码)。

注:3.1同时支持HTTPS_PORT和ANCM_HTTPS_PORT这两个环境变量。

https://docs.microsoft.com/en-us/dotnet/core/compatibility/2.2-3.0

public class HttpsRedirectionMiddleware

    {

        private const int PortNotFound = -1;

        private readonly RequestDelegate _next;

        private readonly Lazy<int> _httpsPort;

        private readonly int _statusCode;

        private readonly IServerAddressesFeature _serverAddressesFeature;

        private readonly IConfiguration _config;

        private readonly ILogger _logger;

        /// <summary>

        /// Initializes the HttpsRedirectionMiddleware

        /// </summary>

        /// <param name="next"></param>

        /// <param name="options"></param>

        /// <param name="config"></param>

        /// <param name="loggerFactory"></param>

        public HttpsRedirectionMiddleware(RequestDelegate next, IOptions<HttpsRedirectionOptions> options, IConfiguration config, ILoggerFactory loggerFactory)

        {

            _next = next ?? throw new ArgumentNullException(nameof(next));

            _config = config ?? throw new ArgumentNullException(nameof(config));

            if (options == null)

            {

                throw new ArgumentNullException(nameof(options));

            }

            var httpsRedirectionOptions = options.Value;

            if (httpsRedirectionOptions.HttpsPort.HasValue)

            {

                _httpsPort = new Lazy<int>(() => httpsRedirectionOptions.HttpsPort.Value);

            }

            else

            {

                _httpsPort = new Lazy<int>(TryGetHttpsPort);

            }

            _statusCode = httpsRedirectionOptions.RedirectStatusCode;

            _logger = loggerFactory.CreateLogger<HttpsRedirectionMiddleware>();

        }

        /// <summary>

        /// Initializes the HttpsRedirectionMiddleware

        /// </summary>

        /// <param name="next"></param>

        /// <param name="options"></param>

        /// <param name="config"></param>

        /// <param name="loggerFactory"></param>

        /// <param name="serverAddressesFeature">The</param>

        public HttpsRedirectionMiddleware(RequestDelegate next, IOptions<HttpsRedirectionOptions> options, IConfiguration config, ILoggerFactory loggerFactory,

            IServerAddressesFeature serverAddressesFeature)

            : this(next, options, config, loggerFactory)

        {

            _serverAddressesFeature = serverAddressesFeature ?? throw new ArgumentNullException(nameof(serverAddressesFeature));

        }

        /// <summary>

        /// Invokes the HttpsRedirectionMiddleware

        /// </summary>

        /// <param name="context"></param>

        /// <returns></returns>

        public Task Invoke(HttpContext context)

        {

            if (context.Request.IsHttps)

            {

                return _next(context);

            }

            var port = _httpsPort.Value;

            if (port == PortNotFound)

            {

                return _next(context);

            }

            var host = context.Request.Host;

            if (port != 443)

            {

                host = new HostString(host.Host, port);

            }

            else

            {

                host = new HostString(host.Host);

            }

            var request = context.Request;

            var redirectUrl = UriHelper.BuildAbsolute(

                "https",

                host,

                request.PathBase,

                request.Path,

                request.QueryString);

            context.Response.StatusCode = _statusCode;

            context.Response.Headers[HeaderNames.Location] = redirectUrl;

            _logger.RedirectingToHttps(redirectUrl);

            return Task.CompletedTask;

        }

        //  Returns PortNotFound (-1) if we were unable to determine the port.

        private int TryGetHttpsPort()

        {

            // The IServerAddressesFeature will not be ready until the middleware is Invoked,

            // Order for finding the HTTPS port:

            // 1. Set in the HttpsRedirectionOptions

            // 2. HTTPS_PORT environment variable

            // 3. IServerAddressesFeature

            // 4. Fail if not sets

            var nullablePort = _config.GetValue<int?>("HTTPS_PORT") ?? _config.GetValue<int?>("ANCM_HTTPS_PORT");

            if (nullablePort.HasValue)

            {

                var port = nullablePort.Value;

                _logger.PortLoadedFromConfig(port);

                return port;

            }

            if (_serverAddressesFeature == null)

            {

                _logger.FailedToDeterminePort();

                return PortNotFound;

            }

            foreach (var address in _serverAddressesFeature.Addresses)

            {

                var bindingAddress = BindingAddress.Parse(address);

                if (bindingAddress.Scheme.Equals("https", StringComparison.OrdinalIgnoreCase))

                {

                    // If we find multiple different https ports specified, throw

                    if (nullablePort.HasValue && nullablePort != bindingAddress.Port)

                    {

                        _logger.FailedMultiplePorts();

                        return PortNotFound;

                    }

                    else

                    {

                        nullablePort = bindingAddress.Port;

                    }

                }

            }

            if (nullablePort.HasValue)

            {

                var port = nullablePort.Value;

                _logger.PortFromServer(port);

                return port;

            }

            _logger.FailedToDeterminePort();

            return PortNotFound;

        }

    }

OK,完成了。

AspNetCore3.1_Middleware源码解析_3_HttpsRedirection的更多相关文章

  1. AspNetCore3.1_Secutiry源码解析_4_Authentication_JwtBear

    title: "AspNetCore3.1_Secutiry源码解析_4_Authentication_JwtBear" date: 2020-03-22T16:29:29+08: ...

  2. AspNetCore3.1_Secutiry源码解析_1_目录

    文章目录 AspNetCore3.1_Secutiry源码解析_1_目录 AspNetCore3.1_Secutiry源码解析_2_Authentication_核心项目 AspNetCore3.1_ ...

  3. AspNetCore3.1_Secutiry源码解析_2_Authentication_核心对象

    系列文章目录 AspNetCore3.1_Secutiry源码解析_1_目录 AspNetCore3.1_Secutiry源码解析_2_Authentication_核心项目 AspNetCore3. ...

  4. AspNetCore3.1_Secutiry源码解析_3_Authentication_Cookies

    系列文章目录 AspNetCore3.1_Secutiry源码解析_1_目录 AspNetCore3.1_Secutiry源码解析_2_Authentication_核心流程 AspNetCore3. ...

  5. AspNetCore3.1_Secutiry源码解析_5_Authentication_OAuth

    title: "AspNetCore3.1_Secutiry源码解析_5_Authentication_OAuth" date: 2020-03-24T23:27:45+08:00 ...

  6. AspNetCore3.1_Secutiry源码解析_6_Authentication_OpenIdConnect

    title: "AspNetCore3.1_Secutiry源码解析_6_Authentication_OpenIdConnect" date: 2020-03-25T21:33: ...

  7. AspNetCore3.1_Secutiry源码解析_8_Authorization_授权框架

    目录 AspNetCore3.1_Secutiry源码解析_1_目录 AspNetCore3.1_Secutiry源码解析_2_Authentication_核心流程 AspNetCore3.1_Se ...

  8. AspNetCore3.1源码解析_2_Hsts中间件

    title: "AspNetCore3.1源码解析_2_Hsts中间件" date: 2020-03-16T12:40:46+08:00 draft: false --- 概述 在 ...

  9. 【原】Android热更新开源项目Tinker源码解析系列之三:so热更新

    本系列将从以下三个方面对Tinker进行源码解析: Android热更新开源项目Tinker源码解析系列之一:Dex热更新 Android热更新开源项目Tinker源码解析系列之二:资源文件热更新 A ...

随机推荐

  1. peculiar|retreated|civilize|conceivable

    ADJ-GRADED 奇怪的:古怪的:不寻常的If you describe someone or something as peculiar, you think that they are str ...

  2. HTTP协议八种请求类型介绍

    HTTP 协议中共定义了八种方法或者叫“动作”来表明对 Request-URI 指定的资源的不同操作方式,具体介绍如下: OPTIONS:返回服务器针对特定资源所支持的HTTP请求方法.也可以利用向W ...

  3. cs231n spring 2017 lecture4 Introduction to Neural Networks

    1. Backpropagation:沿着computational graph利用链式法则求导.每个神经元有两个输入x.y,一个输出z,好多层这种神经元连接起来,这时候已知∂L/∂z,可以求出∂L/ ...

  4. Android开发之《RXJava的简单实现》

    import android.util.Log; import rx.Observable; import rx.Subscriber; import rx.functions.Action1; pu ...

  5. Html 的生命周期

    零.序言 vue 用多了,自然离不开生命周期.最近突发奇想,加上之前看过的文章中关于 script 标签中的 async 和 defer 的捣糨糊,决定整理一下,攻克这个模糊点. 当然,最多的还是与 ...

  6. stress命令安装

    一.stress(cpu) stress是一个linux下的压力测试工具,专门为那些想要测试自己的系统,完全高负荷和监督这些设备运行的用户. 下载地址http://people.seas.harvar ...

  7. 使用GitBook编写项目文档

    GitBook简介 GitBook 是使用 GitHub / Git 和 Markdown(或AsciiDoc)构建漂亮书籍的命令行工具(和Node.js库): GitBook 可以将您的内容作为网站 ...

  8. 吴裕雄--天生自然 R语言开发学习:时间序列

    #-----------------------------------------# # R in Action (2nd ed): Chapter 15 # # Time series # # r ...

  9. python基础修改haproxy配置文件

    1.通过eval(),可以将字符串转为字典类型. 2.Encode过程,是把python对象转换成json对象的一个过程,常用的两个函数是dumps和dump函数.两个函数的唯一区别就是dump把py ...

  10. Substring(Codeforces-D-拓扑排序)

    D. Substring time limit per test 3 seconds memory limit per test 256 megabytes You are given a graph ...