You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/frontend/src/content/docs/app-host/certificate-configuration.mdx
+3-3Lines changed: 3 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -10,7 +10,7 @@ Aspire provides two complementary sets of certificate APIs:
10
10
1.**HTTPS endpoint APIs**: Configure the certificates that resources use for their own HTTPS endpoints (server authentication)
11
11
2.**Certificate trust APIs**: Configure which certificates resources trust when making outbound HTTPS connections (client authentication)
12
12
13
-
Both sets of APIs work together to enable secure HTTPS communication during local development. For example, a Vite frontend might use `WithHttpsDeveloperCertificate` to serve HTTPS traffic, while also using `WithDeveloperCertificateTrust` to trust the dashboard's OTLP endpoint certificate.
13
+
Both sets of APIs work together to enable secure HTTPS communication during local development. For example, a Vite frontend might use `WithHttpsDeveloperCertificate` to serve HTTPS traffic, while also using `WithDeveloperCertificateTrust` to trust the dashboard's <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr> endpoint certificate.
14
14
15
15
<Asidetype="caution">
16
16
Certificate customization only applies at run time. Custom certificates aren't
@@ -277,7 +277,7 @@ Certificate trust customization is valuable when:
277
277
278
278
### Development certificate trust
279
279
280
-
By default, Aspire attempts to add trust for the development certificate to resources that wouldn't otherwise trust it. This enables resources to communicate with the dashboard OTLP collector endpoint over HTTPS and any other HTTPS endpoints secured by the development certificate.
280
+
By default, Aspire attempts to add trust for the development certificate to resources that wouldn't otherwise trust it. This enables resources to communicate with the dashboard <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr> collector endpoint over HTTPS and any other HTTPS endpoints secured by the development certificate.
281
281
282
282
You can control this behavior per resource using the `WithDeveloperCertificateTrust` API or through AppHost configuration settings.
283
283
@@ -371,7 +371,7 @@ Aspire supports the following certificate trust scopes:
371
371
372
372
Attempts to append the configured certificates to the default trusted certificates for a given resource. This mode is useful when you want to add trust for additional certificates while maintaining trust for the system's default certificates.
373
373
374
-
This is the default scope for most resources. For Python resources, only OTEL trust configuration will be applied in this mode.
374
+
This is the default scope for most resources. For Python resources, only <abbrtitle="OpenTelemetry"data-tooltip-placement="top">OTEL</abbr> trust configuration will be applied in this mode.
|`ASPNETCORE_URLS`|`null`| Dashboard address. Must be `https` unless `ASPIRE_ALLOW_UNSECURED_TRANSPORT` or `DistributedApplicationOptions.AllowUnsecuredTransport` is true. Automatically generated with _launchSettings.json_ to have a random port on localhost. The value in launch settings is set on the `applicationUrls` property. |
118
118
|`ASPNETCORE_ENVIRONMENT`|`Production`| Configures the environment the dashboard runs as. For more information, see [Use multiple environments in ASP.NET Core](https://learn.microsoft.com/aspnet/core/fundamentals/environments). |
119
-
|`ASPIRE_DASHBOARD_OTLP_ENDPOINT_URL`|`http://localhost:18889` if no gRPC endpoint is configured. | Configures the dashboard OTLP gRPC address. Used by the dashboard to receive telemetry over OTLP. Set on resources as the `OTEL_EXPORTER_OTLP_ENDPOINT` env var. The `OTEL_EXPORTER_OTLP_PROTOCOL` env var is `grpc`. Automatically generated with _launchSettings.json_ to have a random port on localhost. |
120
-
|`ASPIRE_DASHBOARD_OTLP_HTTP_ENDPOINT_URL`|`null`| Configures the dashboard OTLP HTTP address. Used by the dashboard to receive telemetry over OTLP. If only `ASPIRE_DASHBOARD_OTLP_HTTP_ENDPOINT_URL` is configured then it is set on resources as the `OTEL_EXPORTER_OTLP_ENDPOINT` env var. The `OTEL_EXPORTER_OTLP_PROTOCOL` env var is `http/protobuf`. |
119
+
|`ASPIRE_DASHBOARD_OTLP_ENDPOINT_URL`|`http://localhost:18889` if no gRPC endpoint is configured. | Configures the dashboard <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr> gRPC address. Used by the dashboard to receive telemetry over <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr>. Set on resources as the `OTEL_EXPORTER_OTLP_ENDPOINT` env var. The `OTEL_EXPORTER_OTLP_PROTOCOL` env var is `grpc`. Automatically generated with _launchSettings.json_ to have a random port on localhost. |
120
+
|`ASPIRE_DASHBOARD_OTLP_HTTP_ENDPOINT_URL`|`null`| Configures the dashboard <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr> HTTP address. Used by the dashboard to receive telemetry over <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr>. If only `ASPIRE_DASHBOARD_OTLP_HTTP_ENDPOINT_URL` is configured then it is set on resources as the `OTEL_EXPORTER_OTLP_ENDPOINT` env var. The `OTEL_EXPORTER_OTLP_PROTOCOL` env var is `http/protobuf`. |
121
121
|`ASPIRE_DASHBOARD_CORS_ALLOWED_ORIGINS`|`null`| Overrides the CORS allowed origins configured in the dashboard. This setting replaces the default behavior of calculating allowed origins based on resource endpoints. |
122
-
|`ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS`|`false`| Configures the dashboard to not use authentication and accept anonymous access. Sets frontend, OTLP, MCP, and API auth modes to `Unsecured`. |
122
+
|`ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS`|`false`| Configures the dashboard to not use authentication and accept anonymous access. Sets frontend, <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr>, <abbrtitle="Model Context Protocol"data-tooltip-placement="top">MCP</abbr>, and API auth modes to `Unsecured`. |
123
123
|`ASPIRE_DASHBOARD_FRONTEND_BROWSERTOKEN`| Automatically generated 128-bit entropy token. | Configures the frontend browser token. This is the value that must be entered to access the dashboard when the auth mode is BrowserToken. If no browser token is specified then a new token is generated each time the AppHost is launched. |
124
124
|`ASPIRE_DASHBOARD_TELEMETRY_OPTOUT`|`false`| Configures the dashboard to never send [usage telemetry](/dashboard/microsoft-collected-dashboard-telemetry/). |
125
125
|`ASPIRE_DASHBOARD_AI_DISABLED`|`false`|[GitHub Copilot in the dashboard](/dashboard/copilot/) is available when the AppHost is launched by a supported IDE. When set to `true` Copilot is disabled in the dashboard and no Copilot UI is visible. |
@@ -135,8 +135,8 @@ Internal settings are used by the AppHost and integrations. Internal settings ar
135
135
|`AppHost:Directory`| The content root if there's no project. | Directory of the project where the AppHost is located. Accessible from the `IDistributedApplicationBuilder.AppHostDirectory`. |
136
136
|`AppHost:Path`| The directory combined with the application name. | The path to the AppHost. It combines the directory with the application name. |
137
137
|`AppHost:Sha256`| It is created from the AppHost name when the AppHost is in publish mode. Otherwise it is created from the AppHost path. | Hex encoded hash for the current application. The hash is based on the location of the app on the current machine so it is stable between launches of the AppHost. |
138
-
|`AppHost:OtlpApiKey`| Automatically generated 128-bit entropy token. | The API key used to authenticate requests sent to the dashboard OTLP service. The value is present if needed: the AppHost is in run mode, the dashboard isn't disabled, and the dashboard isn't configured to allow anonymous access with `ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS`. |
139
-
|`AppHost:DashboardApiKey`| Automatically generated 128-bit entropy token. | The API key used to authenticate requests to the dashboard telemetry API. Also used as a fallback for MCP authentication if `AppHost:McpApiKey` is not set. The value is present if needed: the AppHost is in run mode, the dashboard isn't disabled, and the dashboard isn't configured to allow anonymous access. |
138
+
|`AppHost:OtlpApiKey`| Automatically generated 128-bit entropy token. | The API key used to authenticate requests sent to the dashboard <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr> service. The value is present if needed: the AppHost is in run mode, the dashboard isn't disabled, and the dashboard isn't configured to allow anonymous access with `ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS`. |
139
+
|`AppHost:DashboardApiKey`| Automatically generated 128-bit entropy token. | The API key used to authenticate requests to the dashboard telemetry API. Also used as a fallback for <abbrtitle="Model Context Protocol"data-tooltip-placement="top">MCP</abbr> authentication if `AppHost:McpApiKey` is not set. The value is present if needed: the AppHost is in run mode, the dashboard isn't disabled, and the dashboard isn't configured to allow anonymous access. |
140
140
|`AppHost:BrowserToken`| Automatically generated 128-bit entropy token. | The browser token used to authenticate browsing to the dashboard when it is launched by the AppHost. The browser token can be set by `ASPIRE_DASHBOARD_FRONTEND_BROWSERTOKEN`. The value is present if needed: the AppHost is in run mode, the dashboard isn't disabled, and the dashboard isn't configured to allow anonymous access with `ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS`. |
141
141
|`AppHost:ResourceService:AuthMode`|`ApiKey`. If `ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS` is true then the value is `Unsecured`. | The authentication mode used to access the resource service. The value is present if needed: the AppHost is in run mode and the dashboard isn't disabled. |
142
142
|`AppHost:ResourceService:ApiKey`| Automatically generated 128-bit entropy token. | The API key used to authenticate requests made to the AppHost's resource service. The API key can be set by `ASPIRE_DASHBOARD_RESOURCESERVICE_APIKEY`. The value is present if needed: the AppHost is in run mode, the dashboard isn't disabled, and the dashboard isn't configured to allow anonymous access with `ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS`. |
Copy file name to clipboardExpand all lines: src/frontend/src/content/docs/architecture/resource-hierarchies.mdx
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -65,7 +65,7 @@ The following scenarios illustrate how Aspire models parent-child relationships:
65
65
66
66
In Aspire, configuration, connectivity details, and dependencies between distributed resources are modeled using **structured values**. These values capture relationships explicitly—not just as simple strings—making the application graph **portable, inspectable, and evolvable**.
67
67
68
-
Aspire represents these relationships through a **heterogeneous Directed Acyclic Graph (DAG)**. This graph tracks not only dependency ordering but also how **structured values** are passed between resources at multiple abstraction levels: configuration, connection, and runtime behavior.
68
+
Aspire represents these relationships through a **heterogeneous Directed Acyclic Graph (<abbrtitle="Directed Acyclic Graph"data-tooltip-placement="top">DAG</abbr>)**. This graph tracks not only dependency ordering but also how **structured values** are passed between resources at multiple abstraction levels: configuration, connection, and runtime behavior.
Copy file name to clipboardExpand all lines: src/frontend/src/content/docs/architecture/resource-model.mdx
+1-1Lines changed: 1 addition & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -8,7 +8,7 @@ import LearnMore from '@components/LearnMore.astro';
8
8
9
9
Aspire's AppHost represents a collection of resources, known as the "resource model". This model allows developers to define and manage the various components and services that make up their applications, providing a unified way to interact with these resources throughout the development lifecycle.
10
10
11
-
The resource model is a **directed acyclic graph (DAG)**, where resources are nodes and dependencies are edges. This structure allows Aspire to manage complex relationships between resources, ensuring that they can be started, stopped, and monitored in a predictable manner.
11
+
The resource model is a **directed acyclic graph (<abbrtitle="Directed Acyclic Graph"data-tooltip-placement="top">DAG</abbr>)**, where resources are nodes and dependencies are edges. This structure allows Aspire to manage complex relationships between resources, ensuring that they can be started, stopped, and monitored in a predictable manner.
0 commit comments