Angular - 身份验证标头 [英] Angular - authentication headers

问题描述

我有一个 Java 后端，它为我提供了一些受身份验证保护的 API.

I have an java backend that provides me some API's that are protected with authentication.

因此，如果我使用具有授权的任何浏览器或邮递员调用它，我会收到 200 (Ok) 响应，但是如果我使用相同的用户和密码设置 httpHeaders，我收到 401(未经授权).

So if I call it using any browser or postman with Authorization I have an 200 (Ok) response, but If I set httpHeaders with the same user and password, I get 401 (Unauthorized).

电话:

let username: string = 'admin';
let password: string = 'pe';
let headers =  new HttpHeaders().set('Authorization' , 'Basic ' + btoa(username + ':' + password)).set('Content-Type', 'application/json').set('cache-control', 'no-cache'); 
console.log(headers);

let params = new HttpParams().set('instID', value).set('procType', 'M');

return this.httpClient.get<pe_process_instance[]>('http://' + this.urlConfig.BASE_URL + ':' + this.urlConfig.PORT + '/' + this.urlConfig.WSBaseURL + '/getipeprocessinstances', { headers: headers , params: params });

回应:

我在这里缺少什么?我是否正确设置了标题?

What I am missing here? Do I correctly set my headers?

推荐答案

尝试以这种方式设置headers:

let headers = new HttpHeaders();

headers = headers.append('Authorization', 'Basic ' + btoa(username + ':' + password));
headers = headers.append('Content-Type', 'application/json');
headers = headers.append('cache-control', 'no-cache');

当您多次使用 .set() 时，您每次都会覆盖标头，并且只发送最后一个标头.

When you use .set() multiple times you overwrite your headers each time, and only last header is send.

这篇关于Angular - 身份验证标头的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！