dashboard: side-rail layout + SignalR push hubs (snapshot, alarms, events)

Layout ------ DashboardLayout.razor replaces the inline header nav with a left side rail modelled on the OtOpcUa admin (Dashboard B). The top bar keeps only the brand, breadcrumb, and signed-in status pill; navigation moves into a fixed-width 218px rail with grouped section eyebrows (Overview, Runtime, Galaxy, Admin) and a Session footer carrying the user name, role claims, and a Sign-out button. dashboard.css gains the `.app-shell` flex container, `.side-rail` column, `.rail-eyebrow`, `.rail-link[.active]`, `.rail-foot`, `.rail-user`, `.rail-roles`, and `.rail-btn` rules (all driven by the existing theme.css tokens, no new hard-coded colours). SignalR (push) -------------- Adds three hubs under `Dashboard/Hubs/`, all gated by the `HubClientsPolicy` registered in the previous commit: * DashboardSnapshotHub (/hubs/snapshot) Broadcasts the full DashboardSnapshot on every change. Sends the current snapshot to a new caller in OnConnectedAsync so the first paint is immediate. * AlarmsHub (/hubs/alarms) Connected clients auto-join the `__alarms__` group. Receives AlarmFeedMessage values (active_alarm / snapshot_complete / transition) re-broadcast from the gateway's central alarm monitor. * EventsHub (/hubs/events) Per-session push surface. Clients call SubscribeSession(sessionId) to join `session:{id}`. The publisher side is intentionally a follow-up — the snapshot hub already carries recent-events rollups; a dedicated MxEvent broadcaster on EventStreamService will plug into this hub's group convention. Two BackgroundService publishers wire server-side data sources to the hubs: * DashboardSnapshotPublisher subscribes to `IDashboardSnapshotService.WatchSnapshotsAsync` and forwards every snapshot to all connected hub clients. * AlarmsHubPublisher subscribes to `IGatewayAlarmService.StreamAsync` (no filter) and forwards every AlarmFeedMessage to the `__alarms__` group, reconnecting with a 5-second backoff if the stream faults. Connection + auth plumbing -------------------------- * `GET /hubs/token` issues a fresh data-protected bearer token bound to the calling user's identity and roles. Gated by the cookie-only ViewerPolicy so a Blazor circuit (cookie-authenticated) can mint a token, but a hub bearer cannot self-bootstrap a new one. * DashboardHubConnectionFactory (scoped) is the client-side helper Razor pages inject. It builds a HubConnection with an AccessTokenProvider that calls HubTokenService.Issue on every (re)connect — keeps the connection alive across cookie refresh boundaries. Pull → push refactor -------------------- DashboardPageBase no longer drives its own `WatchSnapshotsAsync` async-foreach loop. It now: 1. seeds Snapshot synchronously from `IDashboardSnapshotService.GetSnapshot()` so the first render is non-empty; 2. opens a `DashboardSnapshotHub` connection via the connection factory; 3. updates Snapshot + triggers StateHasChanged on each `SnapshotUpdated` push. The hub connection is best-effort: if SignalR can't start, the synchronous snapshot seed keeps the UI populated. SignalR's WithAutomaticReconnect handles the recovery path. Package ------- Adds `Microsoft.AspNetCore.SignalR.Client` 10.0.0 to the server csproj so the in-process Blazor pages can open hub connections back to their own hosting process. Verification: 475 server tests (+ 2 new `DashboardHubsRegistrationTests` that pin the hub negotiate endpoints and the singleton/scoped DI shape), 275 worker tests (+ 9 dev-rig skips), 18 integration tests (live MxAccess + LDAP + Galaxy) all pass. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-24 01:48:27 -04:00
parent 27ed65114e
commit 65943597d4
13 changed files with 494 additions and 70 deletions
@@ -0,0 +1,44 @@
+using Microsoft.AspNetCore.Builder;
+using Microsoft.AspNetCore.Routing;
+using Microsoft.Extensions.DependencyInjection;
+using ZB.MOM.WW.MxGateway.Server;
+using ZB.MOM.WW.MxGateway.Server.Dashboard;
+using ZB.MOM.WW.MxGateway.Server.Dashboard.Hubs;
+
+namespace ZB.MOM.WW.MxGateway.Tests.Gateway.Dashboard;
+
+public sealed class DashboardHubsRegistrationTests
+{
+    [Fact]
+    public async Task Build_WhenDashboardEnabled_MapsAllThreeHubsAndTokenEndpoint()
+    {
+        await using WebApplication app = GatewayApplication.Build([]);
+        IReadOnlyList<RouteEndpoint> endpoints = ((IEndpointRouteBuilder)app).DataSources
+            .SelectMany(source => source.Endpoints)
+            .OfType<RouteEndpoint>()
+            .ToList();
+
+        Assert.Contains(endpoints, endpoint => endpoint.RoutePattern.RawText == "/hubs/snapshot/negotiate");
+        Assert.Contains(endpoints, endpoint => endpoint.RoutePattern.RawText == "/hubs/alarms/negotiate");
+        Assert.Contains(endpoints, endpoint => endpoint.RoutePattern.RawText == "/hubs/events/negotiate");
+        Assert.Contains(endpoints, endpoint =>
+            endpoint.Metadata.GetMetadata<IEndpointNameMetadata>()?.EndpointName == "DashboardHubToken");
+    }
+
+    [Fact]
+    public async Task Build_WhenDashboardEnabled_RegistersHubTokenServiceAndConnectionFactory()
+    {
+        await using WebApplication app = GatewayApplication.Build([]);
+
+        // HubTokenService is singleton; DashboardHubConnectionFactory is scoped
+        // (it captures NavigationManager and AuthenticationStateProvider which
+        // are themselves per-circuit).
+        HubTokenService tokens = app.Services.GetRequiredService<HubTokenService>();
+        Assert.NotNull(tokens);
+
+        using IServiceScope scope = app.Services.CreateScope();
+        DashboardHubConnectionFactory factory = scope.ServiceProvider
+            .GetRequiredService<DashboardHubConnectionFactory>();
+        Assert.NotNull(factory);
+    }
+}