C# 401(未经授权)对Angular 7.netcore应用程序的请求
Iam在授权用户使用.net core和angular 7应用程序上的api时遇到401未经授权的错误 我的角度服务具有以下功能:-C# 401(未经授权)对Angular 7.netcore应用程序的请求,c#,angular,typescript,asp.net-core,rxjs,C#,Angular,Typescript,Asp.net Core,Rxjs,Iam在授权用户使用.net core和angular 7应用程序上的api时遇到401未经授权的错误 我的角度服务具有以下功能:- getUserProfile() { var tokenHeader = new HttpHeaders({'Authorization':'Bearer ' + localStorage.getItem('token')}); console.log(tokenHeader) return this.http.get('/api/Applica
getUserProfile() {
var tokenHeader = new HttpHeaders({'Authorization':'Bearer ' + localStorage.getItem('token')});
console.log(tokenHeader)
return this.http.get('/api/ApplicationUser/UserProfile', { headers: tokenHeader});
}
[HttpGet]
[Authorize]
[Route("UserProfile")]
//'api/userProfile'
public async Task<Object> GetUserProfile()
{
string userId = User.Claims.First(c => c.Type == "UserID").Value;
var user = await _userManager.FindByIdAsync(userId);
return new { user.fullName, user.Email, user.UserName };
}
[HttpGet]
[授权]
[路由(“用户配置文件”)]
//“api/userProfile”
公共异步任务GetUserProfile()
{
字符串userId=User.Claims.First(c=>c.Type==“userId”).Value;
var user=await\u userManager.FindByIdAsync(userId);
返回新的{user.fullName,user.Email,user.UserName};
}
非常感谢您的帮助。您可以从“网络”选项卡共享您的请求吗。 我还建议使用拦截器使其全球化
@Injectable()
export class TokenInterceptor implements HttpInterceptor {
private isRefreshing = false;
private refreshTokenSubject: BehaviorSubject<any> = new BehaviorSubject<any>(null);
constructor(public authService: AuthService) { }
intercept(request: HttpRequest<any>, next: HttpHandler): Observable<HttpEvent<any>> {
if (this.authService.getJwtToken()) {
request = this.addToken(request, this.authService.getJwtToken());
}
return next.handle(request).pipe(catchError(error => {
if (error instanceof HttpErrorResponse && error.status === 401) {
return this.handle401Error(request, next);
} else {
return throwError(error);
}
}));
}
private addToken(request: HttpRequest<any>, token: string) {
return request.clone({
setHeaders: {
'Authorization': `Bearer ${token}`
}
});
}
private handle401Error(request: HttpRequest<any>, next: HttpHandler) {
if (!this.isRefreshing) {
this.isRefreshing = true;
this.refreshTokenSubject.next(null);
return this.authService.refreshToken().pipe(
switchMap((token: any) => {
this.isRefreshing = false;
this.refreshTokenSubject.next(token.jwt);
return next.handle(this.addToken(request, token.jwt));
}));
} else {
return this.refreshTokenSubject.pipe(
filter(token => token != null),
take(1),
switchMap(jwt => {
return next.handle(this.addToken(request, jwt));
}));
}
}
}
@Injectable()
导出类TokenInterceptor实现HttpInterceptor{
私有isRefreshing=false;
private refreshTokenSubject:BehaviorSubject您的代码应该是这样的
const httpOptions = {
headers: new HttpHeaders({
'Authorization': `Bearer ${localStorage.getItem('token')}`
})
};
return this.http.get('/api/ApplicationUser/UserProfile', httpOptions);
还要确保控制器中有此线路
[Authorize(AuthenticationSchemes = "Bearer")]
@如果可能的话,请再次检查我的答案。你能告诉我这里改变了什么想法吗?我遵循了一个教程,他们没有添加任何参数进行授权,但工作正常。我认为错误来自你的角度代码。我的代码是以角度设置标题的常用方法。我如何在此指定responseType?在哪里指定{responseType:'text'}在授权后添加