Fatal编程技术网
  • rest/
  • Rest 圣杯&x2B;弹簧安全休息,发出POST请求

Rest 圣杯&x2B;弹簧安全休息,发出POST请求

rest grails spring-security

Rest 圣杯&x2B;弹簧安全休息,发出POST请求,rest,grails,spring-security,spring-security-rest,Rest,Grails,Spring Security,Spring Security Rest,我能够登录(/api/login),并且能够成功地发出GET请求。然而,我似乎不知道如何发出POST请求,同样,我也无法注销(/api/logout) 控制器:(com.example.test) Curl登录(和HTTP响应): 我的POST请求总是被重定向到登录页面(即使我传递了令牌)。 请举例说明如何使用curl或类似rest客户机(Postman)的方法进行post请求。如果可能的话,演示如何注销(/api/logout) 配置 grails.plugin.springsecurity

我能够登录(/api/login),并且能够成功地发出GET请求。然而,我似乎不知道如何发出POST请求,同样,我也无法注销(/api/logout)

控制器:(com.example.test)

Curl登录(和HTTP响应):

我的POST请求总是被重定向到登录页面(即使我传递了令牌)。 请举例说明如何使用curl或类似rest客户机(Postman)的方法进行post请求。如果可能的话,演示如何注销(/api/logout)

配置
grails.plugin.springsecurity.rest.login.active=true grails.plugin.springsecurity.rest.login.endpointUrl='/api/login' grails.plugin.springsecurity.rest.login.failureStatusCode=401 grails.plugin.springsecurity.rest.login.useJsonCredentials=true grails.plugin.springsecurity.rest.login.usernamePropertyName='username' grails.plugin.springsecurity.rest.login.passwordPropertyName='password' grails.plugin.springsecurity.rest.logout.endpointUrl='/api/logout' grails.plugin.springsecurity.rest.token.storage.useGorm=true grails.plugin.springsecurity.rest.token.storage.gorm.tokenDomainClassName=“com.example.AuthenticationToken” grails.plugin.springsecurity.rest.token.storage.gorm.tokenValuePropertyName=“tokenValue” grails.plugin.springsecurity.rest.token.storage.gorm.usernamePropertyName='username' grails.plugin.springsecurity.rest.login.usernamePropertyName='username' grails.plugin.springsecurity.rest.login.passwordPropertyName='password' grails.plugin.springsecurity.rest.token.generation.useSecureRandom=true

尝试使用失败的POST

以下是我使用Curl和postman尝试的一些方法:

 curl -v -X POST --form "access_token=bdv3de54oglo2i997k1tomvdgptm2ojq"
    http://localhost:8080/restplug/TestData/secret

 curl -v -X POST -H "Content-Type: application/x-www-form-urlencode"
    --form "access_token=bdv3de54oglo2i997k1tomvdgptm2ojq"
    http://localhost:8080/restplug/TestData/secret

同时使用邮递员(附图):

你能用卷发显示你的发帖请求吗?我还需要查看配置 
curl -v -H "Content-Type: application/json" -X POST -d
  '{"username":"user", "password":"pass"}' 
  http://localhost:8080/restplug/api/login

< HTTP/1.1 200 OK
 {"username":"user","roles":"ROLE_ADMIN"],
 "access_token":"a2d4biqg7oqu0ig4m22pj20qsesva81d",
 "token_type":"Bearer"}

curl -v -i -H "Authorization: Bearer a2d4biqg7oqu0ig4m22pj20qsesva81d" 
   -X GET http://localhost:8080/restplug/TestData/secret

 curl -v -X POST --form "access_token=bdv3de54oglo2i997k1tomvdgptm2ojq"
    http://localhost:8080/restplug/TestData/secret

 curl -v -X POST -H "Content-Type: application/x-www-form-urlencode"
    --form "access_token=bdv3de54oglo2i997k1tomvdgptm2ojq"
    http://localhost:8080/restplug/TestData/secret