stackoom
  简体   繁体   中英

mvc web api authentication token cors problem

 原文  2019-04-14 07:02:18       c#/ angularjs/ asp.net-mvc/ rest/ api

Question

Good day,

I am working with asp.net api and Angular.

When I am trying to get my authentication token from my api, I receive errors

d

I have a controller that returns an authentication token for my application.This is the logic for the controller 

        [HttpPost]
    [Route("authenticate")]
    public async System.Threading.Tasks.Task<IHttpActionResult> AuthenticateAsync(LoginRequest login)
    {
        if (login == null)
            throw new HttpResponseException(HttpStatusCode.BadRequest);

        var result = await SignInManager.PasswordSignInAsync(login.Username, login.Password, false, shouldLockout: false);
       var strCurrentUserId = User.Identity.GetUserId();
        switch (result)
        {
            case SignInStatus.Success:
                {
                    LoginAprovado loginAprovado = new LoginAprovado
                    {
                        Token = TokenGenerator.GenerateTokenJwt(DateTime.Now.ToString() + login.Username + Guid.NewGuid()),
                        UserId = User.Identity.GetUserId()
                    };                       
                    return Ok(loginAprovado);
                }                  
            default:
                {
                    return Unauthorized();
                }
        }
    }

As you can see, I am returning the object LoginAprovado.

I do not know how to fix this problem, it seems a cors issue.

This is my web config 

  <appSettings>

<add key="JWT_AUDIENCE_TOKEN" value="http://mysite.azurewebsites.net/" />
<add key="JWT_ISSUER_TOKEN" value="http://mysite.azurewebsites.net/" />
...more here
  <system.webServer>
<httpProtocol>
        <customHeaders>
            <add name="Access-Control-Allow-Origin" value="*" />
            <add name="Access-Control-Allow-Methods" value="GET,PUT,POST,DELETE,OPTIONS" />
    <add name="Access-Control-Allow-Headers" value="Origin, X-Requested-With, Content-Type, Accept" />
        </customHeaders>
    </httpProtocol>

Note that in my customeheaders section, the access-controol-allow-origin is set to * so I can debug my front end in local.

What can I do to fix the issue? thanks

1 answers

solution1
 0  2019-04-14 07:05:59

根据我的经验,对我Configuration(IAppBuilder app)Startup类的第一行Configuration(IAppBuilder app)方法中添加以下行(如果您使用的是OWIN ): 

app.UseCors(Microsoft.Owin.Cors.CorsOptions.AllowAll);

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Pass token in header for authentication in MVC and Web API Web API token authentication MVC application Cookie AND Token authentication in Web Api project Web api authentication and MVC 4 Token authentication for Web API renewal token based authentication web api Token based authentication in web api How to Add token authentication to web api in cookie authentication based asp.net mvc project How to enable CORS (JS + MVC Web API) MVC Web API 5 Upgrade for CORS support
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM