保护发布路线NodeJS [英] Protecting post routes NodeJS
问题描述
我正在开发一个nodeJS应用程序。到目前为止,我已经了解到您可以使用JWT保护路线,并且已经实现了这一点。问题是,我不确定如何保护允许用户发布的路由。
I am working on a nodeJS application. So far i've learned you can protect routes with JWT and i've implemented this. The problem is, I am not sure how to protect a route where the user is allowed to post to.
让我们以注册路由为例,将使用该路由用于用户注册。我希望用户只能从我的应用程序发布到此,但。我不希望任何人都能通过邮递员连接到它并发布任何内容。您如何保护这些路线。
Let's take a register route for example, this route will be used for user registration. I want users to be able to post to this, BUT only from my application. I dont want anyone to just be able to connect to it via postman and post whatever. How do you protect these kind of routes.
预先感谢。
推荐答案
您可以使用CORS中间件来仅允许特定的客户端访问您的服务器 https://expressjs.com/en/resources/ middleware / cors.html
You can use CORS middleware to allow only specific clients to access your server https://expressjs.com/en/resources/middleware/cors.html
示例:
var express = require('express')
var cors = require('cors')
var app = express()
var corsOptions = {
origin: 'http://example.com',
}
app.get('/products/:id', cors(corsOptions), function (req, res, next) {
res.json({msg: 'This is CORS-enabled for only example.com.'})
})
app.listen(80, function () {
console.log('CORS-enabled web server listening on port 80')
})
这篇关于保护发布路线NodeJS的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!