堆栈内存溢出
  简体   繁体   English

发送PUT请求时出现Spring + AngularJs + Tomcat 9.0-403错误

[英]Spring +AngularJs + Tomcat 9.0 - 403 error when sending a PUT request

 原文  2017-06-14 12:03:57       java/ angularjs/ spring/ rest/ tomcat

问题描述

I am getting the following error when I click on 'Add To Cart'. 单击“添加到购物车”时出现以下错误。

PUT http://localhost:8080/emusicstore/rest/cart/add/97 403 () PUT http:// localhost:8080 / emusicstore / rest / cart / add / 97 403()

viewProduct.jsp viewProduct.jsp 

    <%@ taglib uri="http://java.sun.com/jsp/jstl/core" prefix="c"%>
    <%@taglib prefix="form" uri="http://www.springframework.org/tags/form" %>
    <%@include file="/WEB-INF/views/template/header.jsp" %> 
    <div class="container-wrapper">
<div class="container">
    <div class="page-header">
        <h1>Product Detail</h1>

        <p class="lead">Here is the detail information of the product!</p>
    </div>

    <div class="container" ng-app = "cartApp">
        <div class="row">
            <div class="col-md-5">
                <img src="<c:url value="/resources/images/${product.productId}.png" /> " alt="image"
                         style="width:100%"/>
            </div>

            <div class="col-md-5">
                <h3>${product.productName}</h3>
                <p>${product.productDescription}</p>
                <p>
                   <strong>Manufacturer</strong> : ${product.productManufacturer}
                </p>
                <p>
                    <strong>Category</strong> : ${product.productCategory}
                </p>
                <p>
                    <strong>Condition</strong> : ${product.productCondition}
                </p>
                <h4>${product.productPrice} USD</h4>

                <br>

                <c:set var="role" scope="page" value="${param.role}" />
                <c:set var="url" scope="page" value="/productList" />
                <c:if test="${role='admin'}">
                    <c:set var="url" scope="page" value="/admin/productInventory" />
                </c:if>

                <p ng-controller="cartCtrl">
                    <a href="<c:url value="${url}" />" class="btn btn-default">Back</a>
                    <a href="#" class="btn btn-warning btn-large"
                       ng-click="addToCart('${product.productId}')"><span
                            class="glyphicon glyphicon-shopping-cart"></span>Add To Cart</a>
                    <a href="<c:url value="/cart"/>" class="btn btn-default"><span class="glyphicon glyphicon-hand-right"></span>View Cart</a>
                </p>
            </div>
        </div>
    </div>



    <script src="<c:url value="/resources/js/controller.js" /> "></script>

controller.js controller.js 

    var cartApp = angular.module ("cartApp", []);

    cartApp.controller("cartCtrl", function ($scope, $http){

$scope.refreshCart = function (cartId) {
    $http.get('/emusicstore/rest/cart/'+$scope.cartId).success(function (data) {
       $scope.cart=data;
    });
};

$scope.clearCart = function () {
    $http.delete('/emusicstore/rest/cart/'+$scope.cartId).success($scope.refreshCart($scope.cartId));
};

$scope.initCartId = function (cartId) {
    $scope.cartId = cartId;
    $scope.refreshCart(cartId);


};

$scope.addToCart = function (productId) {
    $http.put('/emusicstore/rest/cart/add/'+productId).success(function (data) {
        $scope.refreshCart($http.get('/emusicstore/rest/cart/cartId'));
        alert("Product successfully added to the cart!")
    });
};

$scope.removeFromCart = function (productId) {
    $http.put('/emusicstore/rest/cart/remove/'+productId).success(function (data) {
        $scope.refreshCart($http.get('/emusicstore/rest/cart/cartId'));
    });
};

}); });

CartController.java CartController.java 

    package com.store.emusicstore.controller;

    import java.util.logging.Logger;


    import javax.servlet.http.HttpServletRequest;


    import org.apache.commons.logging.Log;

    import org.springframework.beans.factory.annotation.Autowired;

    import org.springframework.http.HttpStatus;

    import org.springframework.stereotype.Controller;

    import org.springframework.web.bind.annotation.CrossOrigin;

    import org.springframework.web.bind.annotation.ExceptionHandler;

    import org.springframework.web.bind.annotation.PathVariable;

    import org.springframework.web.bind.annotation.RequestBody;

    import org.springframework.web.bind.annotation.RequestMapping;

    import org.springframework.web.bind.annotation.RequestMethod;

    import org.springframework.web.bind.annotation.ResponseBody;

    import org.springframework.web.bind.annotation.ResponseStatus;


    import com.store.emusicstore.dao.CartDao;

    import com.store.emusicstore.dao.ProductDao;

    import com.store.emusicstore.model.Cart;

    import com.store.emusicstore.model.CartItem;

    import com.store.emusicstore.model.Product;



    @Controller

    @RequestMapping("/rest/cart")

    public class CartController {

@Autowired
private CartDao cartDao;

@Autowired
private ProductDao productDao;

@RequestMapping(value="/{cartId}" , method = RequestMethod.GET)
public @ResponseBody Cart read(@PathVariable(value ="cartId") String cartId){
    return cartDao.read(cartId);

}
@RequestMapping(value="/{cartId}", method = RequestMethod.PUT)
@ResponseStatus(value = HttpStatus.NO_CONTENT)
public void update(@PathVariable(value = "cartId" ) String cartId, @RequestBody Cart cart) {
    cartDao.update(cartId, cart);
}

@RequestMapping(value = "/{cartId}", method = RequestMethod.DELETE)
@ResponseStatus(value = HttpStatus.NO_CONTENT)
public void delete(@PathVariable(value="cartId") String cartId) {
    cartDao.delete(cartId);
}

@RequestMapping(value="/add/{productId}", method = RequestMethod.PUT)
@ResponseStatus(value = HttpStatus.NO_CONTENT)
public void addItem(@PathVariable (value = "productId") String productId, HttpServletRequest request) {
    System.out.println("Inside addItem()");
    String sessionId = request.getSession(true).getId();
    Cart cart = cartDao.read(sessionId);
    if(cart == null) {
        cart = cartDao.create(new Cart(sessionId));
    }

    Product product = productDao.getProductById(Long.valueOf(productId));
    if (product == null) {
        throw new IllegalArgumentException(new Exception());
    }

    cart.addCartItem(new CartItem(product));

    cartDao.update(sessionId, cart);
}

@RequestMapping(value="/remove/{productId}", method=RequestMethod.PUT)
@ResponseStatus(value=HttpStatus.NO_CONTENT)
public void removeItem(@PathVariable Long productId, HttpServletRequest request) {
    String sessionId = request.getSession(true).getId();
    Cart cart = cartDao.read(sessionId);



    Product product = productDao.getProductById(productId);
    if (product == null || cart == null) {
        throw new IllegalArgumentException(new Exception());
    }

    cart.removeCartItem(new CartItem(product));

    cartDao.update(sessionId, cart);
}

@ExceptionHandler(IllegalArgumentException.class)
@ResponseStatus(value = HttpStatus.BAD_REQUEST, reason = "Illegal request, please verify your payload")
public void handleClientErrors(Exception e){}

@ExceptionHandler(Exception.class)
@ResponseStatus(value = HttpStatus.INTERNAL_SERVER_ERROR, reason = "Internal Server")
public void handleServerErrors(Exception e){}

} }

web.xml web.xml 

    <?xml version="1.0" encoding="UTF-8"?>


<!-- The definition of the Root Spring Container shared by all Servlets 
    and Filters -->
<context-param>
    <param-name>contextConfigLocation</param-name>
    <param-value>/WEB-INF/spring/root-context.xml</param-value>
</context-param>

<!-- Creates the Spring Container shared by all Servlets and Filters -->
<listener>
    <listener-class>org.springframework.web.context.ContextLoaderListener
    </listener-class>
</listener>


<!-- Processes application requests -->
<servlet>
    <servlet-name>appServlet</servlet-name>
    <servlet-class>org.springframework.web.servlet.DispatcherServlet
    </servlet-class>
    <init-param>
        <param-name>contextConfigLocation</param-name>
        <param-value>/WEB-INF/spring/appServlet/servlet-context.xml
        </param-value>
    </init-param>
    <load-on-startup>1</load-on-startup>
</servlet>

<servlet-mapping>
    <servlet-name>appServlet</servlet-name>
    <url-pattern>/</url-pattern>
</servlet-mapping>



<filter>
    <display-name>springMultipartFilter</display-name>
    <filter-name>springMultipartFilter</filter-name>
    <filter-class>org.springframework.web.multipart.support.MultipartFilter
    </filter-class>
</filter>
<filter-mapping>
    <filter-name>springMultipartFilter</filter-name>
    <url-pattern>/*</url-pattern>
</filter-mapping>
<filter>
    <filter-name>springSecurityFilterChain</filter-name>
    <filter-class>org.springframework.web.filter.DelegatingFilterProxy
    </filter-class>
</filter>
<filter-mapping>
    <filter-name>springSecurityFilterChain</filter-name>
    <url-pattern>/*</url-pattern>
</filter-mapping>

root-context.xml root-context.xml 

    <?xml version="1.0" encoding="UTF-8"?>


<!-- The definition of the Root Spring Container shared by all Servlets 
    and Filters -->
<context-param>
    <param-name>contextConfigLocation</param-name>
    <param-value>/WEB-INF/spring/root-context.xml</param-value>
</context-param>

<!-- Creates the Spring Container shared by all Servlets and Filters -->
<listener>
    <listener-class>org.springframework.web.context.ContextLoaderListener
    </listener-class>
</listener>


<!-- Processes application requests -->
<servlet>
    <servlet-name>appServlet</servlet-name>
    <servlet-class>org.springframework.web.servlet.DispatcherServlet
    </servlet-class>
    <init-param>
        <param-name>contextConfigLocation</param-name>
        <param-value>/WEB-INF/spring/appServlet/servlet-context.xml
        </param-value>
    </init-param>
    <load-on-startup>1</load-on-startup>
</servlet>

<servlet-mapping>
    <servlet-name>appServlet</servlet-name>
    <url-pattern>/</url-pattern>
</servlet-mapping>



<filter>
    <display-name>springMultipartFilter</display-name>
    <filter-name>springMultipartFilter</filter-name>
    <filter-class>org.springframework.web.multipart.support.MultipartFilter
    </filter-class>
</filter>
<filter-mapping>
    <filter-name>springMultipartFilter</filter-name>
    <url-pattern>/*</url-pattern>
</filter-mapping>
<filter>
    <filter-name>springSecurityFilterChain</filter-name>
    <filter-class>org.springframework.web.filter.DelegatingFilterProxy
    </filter-class>
</filter>
<filter-mapping>
    <filter-name>springSecurityFilterChain</filter-name>
    <url-pattern>/*</url-pattern>
</filter-mapping>

Things I have tried inorder to resolve this but DID NOT WORK : 为了解决这个问题,我尝试了一些事情,但没有成功:

  1. Set 'readonly' as false in tomcat's web.xml 在tomcat的web.xml中将“ readonly”设置为false
  2. Disabled csrf by adding security:csrf disabled="true" in root-context inside security:http tag. 通过在security:http标记内的根上下文中添加security:csrf disable =“ true”来禁用csrf。

  3. Added CorsFilter 添加了CorsFilter 

     <filter> <filter-name>CorsFilter</filter-name> <filter-class>org.apache.catalina.filters.CorsFilter</filter-class> <init-param> <param-name>cors.allowed.origins</param-name> <param-value>*</param-value> </init-param> <init-param> <param-name>cors.allowed.headers</param-name> <param-value>Content-Type,X-Requested-With,accept,authorization,Origin,Access-Control-Request-Method,Access-Control-Request-Headers</param-value> </init-param> <init-param> <param-name>cors.allowed.methods</param-name> <param-value>GET, POST, PUT, DELETE, OPTIONS, HEAD</param-value>

I am still not able to get rid of the 403 error when it sends the put request. 当它发送放置请求时,我仍然无法摆脱403错误。

1 个解决方案

解决方案1
 -1  2017-06-14 14:07:26

I don't know if that is the problem, but just from reading your code: 我不知道这是否是问题,仅通过阅读代码即可:
in your js: 在您的js中: 

$scope.addToCart = function (productId) {
$http.put('/emusicstore/rest/cart/add/'+productId).success(function (data) {
    $scope.refreshCart($http.get('/emusicstore/rest/cart/cartId'));
    alert("Product successfully added to the cart!")
});};

and in your java: 并在您的java中: 

@RequestMapping(value="/add/{productId}", method = RequestMethod.PUT)
@ResponseStatus(value = HttpStatus.NO_CONTENT)
public void addItem(@PathVariable (value = "productId") String productId, HttpServletRequest request) {
    System.out.println("Inside addItem()");
    String sessionId = request.getSession(true).getId();
    Cart cart = cartDao.read(sessionId);
    if(cart == null) {
        cart = cartDao.create(new Cart(sessionId));
    }

    Product product = productDao.getProductById(Long.valueOf(productId));
    if (product == null) {
        throw new IllegalArgumentException(new Exception());
    }

    cart.addCartItem(new CartItem(product));

    cartDao.update(sessionId, cart);
 }

you're java returns no data in the response, but in the js your function expects the data. 您是Java,响应中不返回任何数据,但是在js中,您的函数需要该数据。

note that 403 is usually bad mapping or security issues. 请注意,403通常是不良的映射或安全问题。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Spring 发送请求时启动错误 403 - Spring Boot error 403 when sending request Spring with Tomcat 7:PUT 请求为奇怪的响应返回 403 - Spring with Tomcat 7: PUT request returns 403 for strange resons 使用POST或PUT时在Tomcat 7上出现403禁止错误 - 403 Forbidden Error on Tomcat 7 When using POST or PUT 使用 angular 和 spring 与 JWT 启动服务的 PUT 请求出现 403 错误 - 403 error with PUT request using angular and spring boot service with JWT Spring Boot 403禁止在Tomcat 9中使用POST请求 - Spring Boot 403 forbidden with POST request in Tomcat 9 Android retrofit 在向 spring 引导发送请求时出错? - Android retrofit error in sending put request to spring boot? 通过Spring RestTemplate发送PUT请求时文件损坏 - File getting corrupted when sending in a PUT request via Spring RestTemplate 将angularJS与Spring安全性结合使用并发送JSON请求时出现问题 - Issue when using angularJS with Spring security and sending JSON request Tomcat 8 + Spring-双重要求错误 - Tomcat 8 + Spring - Double request error 在Tomcat 8中使用基本身份验证时出现错误403 - Error 403 when using Basic Authentication with Tomcat 8
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM