我当前有一个非常简单的REST API,WICH可以通过基本安全性进行用户身份验证。我的Angular客户端从登录输入接收电子邮件和密码,并从服务器中获取用户。电子邮件和密码发送在HTTP标题中。问题是,当我的SecurityFilter(Jax-rs Java,泽西式后端inmp(时,我知道我的auth头是空的。
我是将它们从Angular ??
发送给它们 getSecuredUser(email: string, password: string){
let headers: Headers = new Headers();
headers.append("Authorization", "Basic " + email + ":" + password);
headers.append("'Access-Control-Allow-Origin': '*' ", "application/x-www-form-urlencoded");
return this.http.get(DEFAULT_PATH + 'users/' + email, headers).subscribe(
(data: Response) => {
var result = data.json();
return result;
}
);
}
您的问题是基本验证的标题。
getSecuredUser(email: string, password: string){
let headers: Headers = new Headers();
headers.append("Authorization", "Basic " + btoa(`${email}:${password}`);
headers.append("'Access-Control-Allow-Origin': '*' ", "application/x-www-form-urlencoded");
return this.http.get(DEFAULT_PATH + 'users/' + email, {headers: headers}).subscribe(
(data: Response) => {
var result = data.json();
return result;
}
);
}