You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/frontend/src/content/docs/app-host/certificate-configuration.mdx
+1-1Lines changed: 1 addition & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -277,7 +277,7 @@ Certificate trust customization is valuable when:
277
277
278
278
### Development certificate trust
279
279
280
-
By default, Aspire attempts to add trust for the development certificate to resources that wouldn't otherwise trust it. This enables resources to communicate with the dashboard <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr> collector endpoint over HTTPS and any other HTTPS endpoints secured by the development certificate.
280
+
By default, Aspire attempts to add trust for the development certificate to resources that wouldn't otherwise trust it. This enables resources to communicate with the dashboard OTLP collector endpoint over HTTPS and any other HTTPS endpoints secured by the development certificate.
281
281
282
282
You can control this behavior per resource using the `WithDeveloperCertificateTrust` API or through AppHost configuration settings.
|`ASPNETCORE_URLS`|`null`| Dashboard address. Must be `https` unless `ASPIRE_ALLOW_UNSECURED_TRANSPORT` or `DistributedApplicationOptions.AllowUnsecuredTransport` is true. Automatically generated with _launchSettings.json_ to have a random port on localhost. The value in launch settings is set on the `applicationUrls` property. |
118
118
|`ASPNETCORE_ENVIRONMENT`|`Production`| Configures the environment the dashboard runs as. For more information, see [Use multiple environments in ASP.NET Core](https://learn.microsoft.com/aspnet/core/fundamentals/environments). |
119
-
|`ASPIRE_DASHBOARD_OTLP_ENDPOINT_URL`|`http://localhost:18889` if no gRPC endpoint is configured. | Configures the dashboard <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr> gRPC address. Used by the dashboard to receive telemetry over <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr>. Set on resources as the `OTEL_EXPORTER_OTLP_ENDPOINT` env var. The `OTEL_EXPORTER_OTLP_PROTOCOL` env var is `grpc`. Automatically generated with _launchSettings.json_ to have a random port on localhost. |
120
-
|`ASPIRE_DASHBOARD_OTLP_HTTP_ENDPOINT_URL`|`null`| Configures the dashboard <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr> HTTP address. Used by the dashboard to receive telemetry over <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr>. If only `ASPIRE_DASHBOARD_OTLP_HTTP_ENDPOINT_URL` is configured then it is set on resources as the `OTEL_EXPORTER_OTLP_ENDPOINT` env var. The `OTEL_EXPORTER_OTLP_PROTOCOL` env var is `http/protobuf`. |
119
+
|`ASPIRE_DASHBOARD_OTLP_ENDPOINT_URL`|`http://localhost:18889` if no gRPC endpoint is configured. | Configures the dashboard <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr> gRPC address. Used by the dashboard to receive telemetry over OTLP. Set on resources as the `OTEL_EXPORTER_OTLP_ENDPOINT` env var. The `OTEL_EXPORTER_OTLP_PROTOCOL` env var is `grpc`. Automatically generated with _launchSettings.json_ to have a random port on localhost. |
120
+
|`ASPIRE_DASHBOARD_OTLP_HTTP_ENDPOINT_URL`|`null`| Configures the dashboard OTLP HTTP address. Used by the dashboard to receive telemetry over OTLP. If only `ASPIRE_DASHBOARD_OTLP_HTTP_ENDPOINT_URL` is configured then it is set on resources as the `OTEL_EXPORTER_OTLP_ENDPOINT` env var. The `OTEL_EXPORTER_OTLP_PROTOCOL` env var is `http/protobuf`. |
121
121
|`ASPIRE_DASHBOARD_CORS_ALLOWED_ORIGINS`|`null`| Overrides the CORS allowed origins configured in the dashboard. This setting replaces the default behavior of calculating allowed origins based on resource endpoints. |
122
-
|`ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS`|`false`| Configures the dashboard to not use authentication and accept anonymous access. Sets frontend, <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr>, <abbrtitle="Model Context Protocol"data-tooltip-placement="top">MCP</abbr>, and API auth modes to `Unsecured`. |
122
+
|`ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS`|`false`| Configures the dashboard to not use authentication and accept anonymous access. Sets frontend, OTLP, <abbrtitle="Model Context Protocol"data-tooltip-placement="top">MCP</abbr>, and API auth modes to `Unsecured`. |
123
123
|`ASPIRE_DASHBOARD_FRONTEND_BROWSERTOKEN`| Automatically generated 128-bit entropy token. | Configures the frontend browser token. This is the value that must be entered to access the dashboard when the auth mode is BrowserToken. If no browser token is specified then a new token is generated each time the AppHost is launched. |
124
124
|`ASPIRE_DASHBOARD_TELEMETRY_OPTOUT`|`false`| Configures the dashboard to never send [usage telemetry](/dashboard/microsoft-collected-dashboard-telemetry/). |
125
125
|`ASPIRE_DASHBOARD_AI_DISABLED`|`false`|[GitHub Copilot in the dashboard](/dashboard/copilot/) is available when the AppHost is launched by a supported IDE. When set to `true` Copilot is disabled in the dashboard and no Copilot UI is visible. |
@@ -135,8 +135,8 @@ Internal settings are used by the AppHost and integrations. Internal settings ar
135
135
|`AppHost:Directory`| The content root if there's no project. | Directory of the project where the AppHost is located. Accessible from the `IDistributedApplicationBuilder.AppHostDirectory`. |
136
136
|`AppHost:Path`| The directory combined with the application name. | The path to the AppHost. It combines the directory with the application name. |
137
137
|`AppHost:Sha256`| It is created from the AppHost name when the AppHost is in publish mode. Otherwise it is created from the AppHost path. | Hex encoded hash for the current application. The hash is based on the location of the app on the current machine so it is stable between launches of the AppHost. |
138
-
|`AppHost:OtlpApiKey`| Automatically generated 128-bit entropy token. | The API key used to authenticate requests sent to the dashboard <abbrtitle="OpenTelemetry Protocol"data-tooltip-placement="top">OTLP</abbr> service. The value is present if needed: the AppHost is in run mode, the dashboard isn't disabled, and the dashboard isn't configured to allow anonymous access with `ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS`. |
139
-
|`AppHost:DashboardApiKey`| Automatically generated 128-bit entropy token. | The API key used to authenticate requests to the dashboard telemetry API. Also used as a fallback for <abbrtitle="Model Context Protocol"data-tooltip-placement="top">MCP</abbr> authentication if `AppHost:McpApiKey` is not set. The value is present if needed: the AppHost is in run mode, the dashboard isn't disabled, and the dashboard isn't configured to allow anonymous access. |
138
+
|`AppHost:OtlpApiKey`| Automatically generated 128-bit entropy token. | The API key used to authenticate requests sent to the dashboard OTLP service. The value is present if needed: the AppHost is in run mode, the dashboard isn't disabled, and the dashboard isn't configured to allow anonymous access with `ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS`. |
139
+
|`AppHost:DashboardApiKey`| Automatically generated 128-bit entropy token. | The API key used to authenticate requests to the dashboard telemetry API. Also used as a fallback for MCP authentication if `AppHost:McpApiKey` is not set. The value is present if needed: the AppHost is in run mode, the dashboard isn't disabled, and the dashboard isn't configured to allow anonymous access. |
140
140
|`AppHost:BrowserToken`| Automatically generated 128-bit entropy token. | The browser token used to authenticate browsing to the dashboard when it is launched by the AppHost. The browser token can be set by `ASPIRE_DASHBOARD_FRONTEND_BROWSERTOKEN`. The value is present if needed: the AppHost is in run mode, the dashboard isn't disabled, and the dashboard isn't configured to allow anonymous access with `ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS`. |
141
141
|`AppHost:ResourceService:AuthMode`|`ApiKey`. If `ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS` is true then the value is `Unsecured`. | The authentication mode used to access the resource service. The value is present if needed: the AppHost is in run mode and the dashboard isn't disabled. |
142
142
|`AppHost:ResourceService:ApiKey`| Automatically generated 128-bit entropy token. | The API key used to authenticate requests made to the AppHost's resource service. The API key can be set by `ASPIRE_DASHBOARD_RESOURCESERVICE_APIKEY`. The value is present if needed: the AppHost is in run mode, the dashboard isn't disabled, and the dashboard isn't configured to allow anonymous access with `ASPIRE_DASHBOARD_UNSECURED_ALLOW_ANONYMOUS`. |
0 commit comments