"System.InvalidOperationException: The endpoint http is not allocated for the resource keycloak-webrtc." generating manifest

[paulomorgado]

I have this resource declared:

var idp = builder.AddKeycloak(
    name: "keycloak",
    adminUsername: builder.AddParameter("KeycloakAdminUsername").ExcludeFromManifest(),
    adminPassword: builder.AddParameter("KeycloakAdminPassword").ExcludeFromManifest())
    .WithExternalHttpEndpoints()
    .WithLifetime(ContainerLifetime.Persistent)
    //.WithDataVolume("Database/Keycloak/") // persist data
    .WithRealmImport("Configuration/Keycloak/")
    .WithDefaults()
    .AddRealm("idp")
    ;

Where WithRealm and WithDefaults are:

public static IResourceBuilder<KeycloakResource> WithDefaults(this IResourceBuilder<KeycloakResource> builder)
{
    const int DefaultHealthPort = 9000;
    const string HealthEndpointName = "health";

    builder
        .WithImageTag("26.0.7")
        .WithArgs(context =>
            {
                context.Args.Add("--hostname-strict=false");
                context.Args.Add("--http-enabled=true");
                context.Args.Add("--verbose");
            })
        .WithEnvironment("KC_PROXY", "edge")
        .WithEnvironment("KC_HEALTH_ENABLED", "true")
        .WithEnvironment("KEYCLOAK_LOGLEVEL", "DEBUG")
        .WithEnvironment("QUARKUS_HTTP_ACCESS_LOG_ENABLED", "true")
        .WithEnvironment("QUARKUS_HTTP_ACCESS_LOG_PATTERN", "Request: %r %s %b %D %h %u %rn %t \"%{i,Referer}\" \"%{i,User-Agent}\" %{i,ALL_REQUEST_HEADERS} %{i,body} %{o,ALL_RESPONSE_HEADERS} %{o,body}")
        .WithHttpEndpoint(targetPort: DefaultHealthPort, name: HealthEndpointName)
        .WithHttpHealthCheck(endpointName: HealthEndpointName, path: "/health/ready")
        ;

    return builder;
}

public static IResourceBuilder<KeycloakRealmResource> AddRealm(
    this IResourceBuilder<KeycloakResource> builder,
    string name,
    string? realmName = null)
{
    ArgumentNullException.ThrowIfNull(builder);

    // Use the resource name as the realm name if it's not provided
    realmName ??= name;

    var keycloakRealm = new KeycloakRealmResource(name, realmName, builder.Resource);

    return builder.ApplicationBuilder.AddResource(keycloakRealm);
}

public sealed class KeycloakRealmResource(string name, string realmName, KeycloakResource parent) : Resource(name), IResourceWithParent<KeycloakResource>, IResourceWithConnectionString
{
    private EndpointReference? _parentEndpoint;
    private EndpointReference ParentEndpoint => _parentEndpoint ??= new(Parent, "http");

    /// <inheritdoc/>
    public ReferenceExpression ConnectionStringExpression => ReferenceExpression.Create(
        $"{ParentEndpoint.Property(EndpointProperty.Scheme)}://{ParentEndpoint.Property(EndpointProperty.Host)}:{ParentEndpoint.Property(EndpointProperty.Port)}/realms/{RealmName}/");

    /// <inheritdoc/>
    public KeycloakResource Parent { get; } = parent;

    /// <summary>
    /// Gets the name of the realm.
    /// </summary>
    public string RealmName { get; } = realmName;
}

And used as:

public static IResourceBuilder<ProjectResource> WithClientAccessTokenHandler(
    this IResourceBuilder<ProjectResource> builder,
    IResourceBuilder<KeycloakRealmResource> idp,
    ...)
{
    return builder
        .WaitFor(idp)
        .WithEnvironment("AuthenticationTokenEndpoint__Uri", idp)
        ...
        ;
}

public static IResourceBuilder<ProjectResource> WithServerAccessTokenHandler(
    this IResourceBuilder<ProjectResource> builder,
    IResourceBuilder<KeycloakRealmResource> idp)
{
    return builder
        .WaitFor(idp)
        .WithEnvironment(async ctx =>
        {
            var baseAddress = await idp.Resource.ConnectionStringExpression.GetValueAsync(default);
            ctx.EnvironmentVariables["Authentication__JwtBearerOptions__Authority"] = $"{baseAddress}";
            ctx.EnvironmentVariables[Authentication__JwtBearerOptions__Configuration__Issuer"] = $"{baseAddress}";
            ctx.EnvironmentVariables["Authentication__JwtBearerOptions__Configuration__AuthorizationEndpoint"] = $"{baseAddress}protocol/openid-connect/auth";
            ctx.EnvironmentVariables["Authentication__JwtBearerOptions__Configuration__TokenEndpoint"] = $"{baseAddress}protocol/openid-connect/token";
            ctx.EnvironmentVariables["Authentication__JwtBearerOptions__Configuration__UserInfoEndpoint"] = $"{baseAddress}protocol/openid-connect/userinfo";
        })
        ;
}

But when I try to generate the publish manifest, I get this:

Unhandled exception. System.AggregateException: One or more errors occurred. (The endpoint `http` is not allocated for the resource `keycloak-webrtc`.)
 ---> System.InvalidOperationException: The endpoint `http` is not allocated for the resource `keycloak-webrtc`.
   at Aspire.Hosting.ApplicationModel.EndpointReference.get_AllocatedEndpoint() in /_/src/Aspire.Hosting/ApplicationModel/EndpointReference.cs:line 105
   at Aspire.Hosting.ApplicationModel.EndpointReference.get_Host() in /_/src/Aspire.Hosting/ApplicationModel/EndpointReference.cs:line 87
   at Aspire.Hosting.ApplicationModel.EndpointReferenceExpression.GetValueAsync(CancellationToken cancellationToken) in /_/src/Aspire.Hosting/ApplicationModel/EndpointReference.cs:line 175
   at Aspire.Hosting.ApplicationModel.ReferenceExpression.GetValueAsync(CancellationToken cancellationToken) in /_/src/Aspire.Hosting/ApplicationModel/ReferenceExpression.cs:line 66
   at Extensions.<>c__DisplayClass1_0.<<WithServerAccessTokenHandler>b__0>d.MoveNext() in C:\src\services-platform\webrtc_paulo\Aspire\WebRTC.AppHost\Program.cs:line 84
--- End of stack trace from previous location ---
   at Aspire.Hosting.Publishing.ManifestPublishingContext.WriteEnvironmentVariablesAsync(IResource resource) in /_/src/Aspire.Hosting/Publishing/ManifestPublishingContext.cs:line 494
   at Aspire.Hosting.Publishing.ManifestPublishingContext.WriteProjectAsync(ProjectResource project) in /_/src/Aspire.Hosting/Publishing/ManifestPublishingContext.cs:line 174
   at Aspire.Hosting.Publishing.ManifestPublishingContext.<>c__DisplayClass20_0.<<WriteResourceAsync>g__WriteResourceObjectAsync|1>d`1.MoveNext() in /_/src/Aspire.Hosting/Publishing/ManifestPublishingContext.cs:line 127
--- End of stack trace from previous location ---
   at Aspire.Hosting.Publishing.ManifestPublishingContext.WriteResourceAsync(IResource resource) in /_/src/Aspire.Hosting/Publishing/ManifestPublishingContext.cs:line 105
   at Aspire.Hosting.Publishing.ManifestPublishingContext.WriteModel(DistributedApplicationModel model, CancellationToken cancellationToken) in /_/src/Aspire.Hosting/Publishing/ManifestPublishingContext.cs:line 77
   at Aspire.Hosting.Publishing.ManifestPublisher.WriteManifestAsync(DistributedApplicationModel model, Utf8JsonWriter jsonWriter, CancellationToken cancellationToken) in /_/src/Aspire.Hosting/Publishing/ManifestPublisher.cs:line 53
   at Aspire.Hosting.Publishing.ManifestPublisher.PublishInternalAsync(DistributedApplicationModel model, CancellationToken cancellationToken) in /_/src/Aspire.Hosting/Publishing/ManifestPublisher.cs:line 42
   at Aspire.Hosting.Publishing.ManifestPublisher.PublishAsync(DistributedApplicationModel model, CancellationToken cancellationToken) in /_/src/Aspire.Hosting/Publishing/ManifestPublisher.cs:line 26
   at Microsoft.Extensions.Hosting.Internal.Host.<StartAsync>b__15_1(IHostedService service, CancellationToken token)
   at Microsoft.Extensions.Hosting.Internal.Host.ForeachService[T](IEnumerable`1 services, CancellationToken token, Boolean concurrent, Boolean abortOnFirstException, List`1 exceptions, Func`3 operation)
   at Microsoft.Extensions.Hosting.Internal.Host.StartAsync(CancellationToken cancellationToken)
   at Microsoft.Extensions.Hosting.HostingAbstractionsHostExtensions.RunAsync(IHost host, CancellationToken token)
   at Microsoft.Extensions.Hosting.HostingAbstractionsHostExtensions.RunAsync(IHost host, CancellationToken token)
   at Aspire.Hosting.DistributedApplication.RunAsync(CancellationToken cancellationToken) in /_/src/Aspire.Hosting/DistributedApplication.cs:line 311
   --- End of inner exception stack trace ---
   at System.Threading.Tasks.Task.ThrowIfExceptional(Boolean includeTaskCanceledExceptions)
   at System.Threading.Tasks.Task.Wait(Int32 millisecondsTimeout, CancellationToken cancellationToken)
   at System.Threading.Tasks.Task.Wait()
   at Aspire.Hosting.DistributedApplication.Run() in /_/src/Aspire.Hosting/DistributedApplication.cs:line 339

What am I doing wrong?

[davidfowl]

Read this:

dotnet/docs-aspire#2340 (comment)

This line of code:

var baseAddress = await idp.Resource.ConnectionStringExpression.GetValueAsync(default);

Only works when running. There's no value for the connection string when you are in publish mode.

You want to use a ReferenceExpression to defer the evaluation and generate the right format in either mode.

.WithEnvironment(async ctx =>
        {
            var baseAddress = idp.Resource.ConnectionStringExpression;
            ctx.EnvironmentVariables["Authentication__JwtBearerOptions__Authority"] = baseAddress;
            ctx.EnvironmentVariables["Authentication__JwtBearerOptions__Configuration__Issuer"] = $"{baseAddress}";
            ctx.EnvironmentVariables["Authentication__JwtBearerOptions__Configuration__AuthorizationEndpoint"] = ReferenceExpression.Create($"{baseAddress}protocol/openid-connect/auth");
            ctx.EnvironmentVariables["Authentication__JwtBearerOptions__Configuration__TokenEndpoint"] = ReferenceExpression.Create($"{baseAddress}protocol/openid-connect/token");
            ctx.EnvironmentVariables["Authentication__JwtBearerOptions__Configuration__UserInfoEndpoint"] = ReferenceExpression.Create($"{baseAddress}protocol/openid-connect/userinfo");
        })