如何將用戶和密碼從angularJS客戶端捕獲到Spring Security中

Question

我已經實現了一個有角度的演示客戶端，該客戶端將POST的用戶名和密碼作為POST發送到讀取該內容的REST Api並執行一些身份驗證邏輯。 事實是，在控制器中始終捕獲為空（無用戶無通過）。 我嘗試在Chrome的Advanced Rest Client中發送相同的數據，並且一切正常。

這是我的代碼段：

角客戶端：

function LoginCtrl($scope, $rootScope, $location, $http, LoginService) {

$scope.submit = function() {
    LoginService.authenticate($.param({username: $scope.inputUsername, password: $scope.inputPassword}), function(user) {
        $rootScope.user = user;
        $http.defaults.headers.common['Authentication'] = user.token;
        $location.path("/");
    });
};

};

控制器Java（首次嘗試）：

public @ResponseBody UserTransfer authenticate(HttpServletRequest request) throws IOException {
    //tried this one first but NULL this two params.
    String username = request.getParam("username");
    String password = request.getParam("password");               


    //somer logic
    return new UserTransfer(userDetails.getUsername(), roles, TokenUtils.createToken(userDetails));

控制器Java（第二次嘗試）：

public @ResponseBody UserTransfer authenticate(@RequestParam("username") String username, @RequestParam("password") String password) throws IOException {

    //tried secondly this one but in this case the server responded with ERROR 400 - Bad Request              


    //somer logic
    return new UserTransfer(userDetails.getUsername(), roles, TokenUtils.createToken(userDetails));

將數據從Angular傳遞到控制器的正確方法是什么？我看不到錯誤...

謝謝你的幫助！！！

Answer 1

有同樣的問題，使用澤西島來處理

web.xml

<servlet>
<servlet-name>RestService</servlet-name>
<servlet-class>com.sun.jersey.spi.spring.container.servlet.SpringServlet</servlet-class>
<init-param>
    <param-name>com.sun.jersey.config.property.packages</param-name>
    <param-value>com.pearson.taxonomy.cm.web.controller</param-value>
</init-param>
<init-param>
    <param-name>com.sun.jersey.api.json.POJOMappingFeature</param-name>
    <param-value>true</param-value>
</init-param>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet-mapping>
    <servlet-name>RestService</servlet-name>
    <url-pattern>/rest/*</url-pattern>
</servlet-mapping>

UserResource.java

import javax.ws.rs.FormParam;
import javax.ws.rs.POST;
import javax.ws.rs.Path;
import javax.ws.rs.Produces;
import javax.ws.rs.core.MediaType;
import java.util.HashMap;
import java.util.Map;

@Component
@Path("/user")
public class UserResource {

    @Autowired
    private UserDetailsService userService;

    @Autowired
    @Qualifier("authenticationManager")
    private AuthenticationManager authManager;


    @Path("authenticate")
    @POST
    @Produces(MediaType.APPLICATION_JSON)
    public UserView authenticate(@FormParam("username") String username, @FormParam("password") String password) {

        UsernamePasswordAuthenticationToken authenticationToken = new UsernamePasswordAuthenticationToken(username, password);
        Authentication authentication = this.authManager.authenticate(authenticationToken);
        SecurityContextHolder.getContext().setAuthentication(authentication);

        Map<String, Boolean> roles = new HashMap<String, Boolean>();

        UserDetails userDetails = this.userService.loadUserByUsername(username);

        for (GrantedAuthority authority : userDetails.getAuthorities()) {
            roles.put(authority.toString(), Boolean.TRUE);
        }

        return new UserView(userDetails.getUsername(), roles, TokenUtils.createToken(userDetails));
    }

}

如何將用戶和密碼從angularJS客戶端捕獲到Spring Security中

問題描述

1 個解決方案

解決方案1
0 2013-09-16 08:42:12

如何將用戶和密碼從angularJS客戶端捕獲到Spring Security中

問題描述

1 個解決方案

解決方案1 0 2013-09-16 08:42:12

解決方案1
0 2013-09-16 08:42:12