this

this

关注
发信
相当于C ++的std :: bind在Java?
带有重定向的python请求
TypeError:不是函数typescript类
将换行从字符串转换为十六进制
如何设置手势检测器YoutubePlayerFragment
用于上传图片的c#代码
硒中的多个FireFox驱动程序(最佳方法)
是否可以在Windows 7和Visual Studio 2012中开发Windows Mobile Apps
从pyspark手动调用Spark的垃圾回收
J2ME应用程序英文单词词典
每次部署网站时,如何让Google App Engine清除内存缓存?
光组件在 Unity 中的 Image 后面
序列化对象的Flex /恢复应用程序状态保存
预备和预先正常化
在numpy python中从稀疏矩阵生成密集矩阵

使用passport-jwt授权jwt令牌时获得401未授权状态

扫码查看
本文介绍了使用passport-jwt授权jwt令牌时获得401未授权状态的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

成功登录后,我得到了 jwt 令牌,现在要访问受限制的 api,我正在发送授权标头,但我总是得到

401 未经授权

我已经提到了这个使用passport-jwt验证节点API这里提出的问题,但没有帮助我,

这是我调用的函数,用于从受限 api 访问数据

check() {控制台日志(this.token);var headers = new headers();headers.append('Content-Type', 'application/json');headers.append("Authorization", "Bearer" + this.token);让 url = this.authenticationEndPoint + 'random';this.checkauth(url, headers).subscribe(数据 =>{控制台日志(数据);},错误 =>{console.log("错误");});}checkauth(url:string, header:any): Observable{返回 this.http.get(url, header).map(this.extractData).catch(this.handleError);}私人提取数据(资源:响应){让身体 = res;返回正文 ||{};}

在我的 nodeJs 服务器上,这里是发送 jwt 令牌的登录代码:

app.post('/login_mobile', function(req, res) {if(!(req.body.email && req.body.passpord)) {user.findOne({'local.email' : req.body.email}, function(err, user) {如果(错误){ 返回完成(错误);}如果(!用户){return res.json(200, "邮箱错误");}if(!user.validPassword(req.body.password)) {return res.json(200, "密码错误");}var token = jwt.encode(user, configAuth.secret);return res.json(200, { user: user, jwtToken: token });});}别的 {res.send("未提供凭据");}});

响应受限api请求的代码

app.get('/random',passport.authenticate('jwt', { session: false }),功能(请求,资源){res.send("成功");});

这是我用来验证用户身份的通行证策略,但奇怪的是它甚至没有打印此处仍然发送 401 状态.

var opts = {};opts.secretOrKey = configAuth.secret;opts.jwtFromRequest = ExtractJwt.fromAuthHeader();护照.使用(新的JwtStrategy(选择,功能(jwt_payload,完成){console.log("这里");控制台日志(jwt_payload);User.findOne({_id: jwt_payload._id}, function(err, found_user) {如果(错误){返回完成(错误,错误);}if(found_user !== null) {res.send("终于");}别的 {res.send("认证失败");}返回 found_user ?完成(空,发现用户):完成(空,假);})}));

如果有人可以指出我的错误.

解决方案

我修复了一个类似的问题替换:

jwtFromRequest: ExtractJwt.fromAuthHeader(),

与:

jwtFromRequest: ExtractJwt.fromAuthHeaderWithScheme('Bearer'),

After successfully logging in I am getting the jwt token, now to access restricted api's I am sending the authorization header, but I am always getting

I have referred to this Authenticating node API with passport-jwt question asked here but didn't helped me,

this is the function I am calling for accessing data from resticted api 

check() {
    console.log(this.token);
    var headers = new Headers();
    headers.append('Content-Type', 'application/json');
    headers.append("Authorization", "Bearer" +  this.token);
    let url = this.authenticationEndPoint + 'random';
    this.checkauth(url, headers).subscribe(
        data => {
            console.log(data);
        },
        error => {
            console.log("error");
        }
    );
}

checkauth(url:string, header:any): Observable<any> {

    return this.http.get(url, header)
            .map(this.extractData)
            .catch(this.handleError);
}
private extractData(res: Response) {
    let body = res;
    return body || {};
}

On my server in nodeJs here is the login code sending the jwt token:

app.post('/login_mobile', function(req, res) {
    if(!(req.body.email && req.body.passpord)) {
        user.findOne({'local.email' : req.body.email}, function(err, user) {
            if (err) { return done(err);}

            if (!user) {
                return res.json(200, "email is wrong");
            }
            if(!user.validPassword(req.body.password)) {
                return res.json(200, "wrong password");
            }
            var token = jwt.encode(user, configAuth.secret);
            return res.json(200, { user: user, jwtToken: token });
        });
    }
    else {
        res.send("no credentials provided");
    }
});

code for responding to restricted api request

app.get('/random', passport.authenticate('jwt', { session: false }),
    function(req, res) {
        res.send("success");
    });

this is the passport strategy I am using to authenticate user, but strangely it is not even printing here still it is sending 401 status.

var opts = {};
opts.secretOrKey = configAuth.secret;
opts.jwtFromRequest = ExtractJwt.fromAuthHeader();
passport.use(new JwtStrategy(opts, function(jwt_payload, done){
    console.log("here");
    console.log(jwt_payload);
    User.findOne({_id: jwt_payload._id}, function(err, found_user) {
        if (err) {
            return done(err, false);
        }
        if(found_user !== null) {
            res.send("finally");
        }
        else {
            res.send("authentication failed");
        }
        return found_user ? done(null, found_user) : done(null, false);
    })
}));

If someone can please point out my mistake.

解决方案

I fixed a similar problem replacing:

jwtFromRequest: ExtractJwt.fromAuthHeader(),

with:

jwtFromRequest: ExtractJwt.fromAuthHeaderWithScheme('Bearer'),

这篇关于使用passport-jwt授权jwt令牌时获得401未授权状态的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!

08-20 05:42
查看更多
Powered by LMLPHP ©2025 this 0.050095