C＃RESTSharp客户端连接Drupal Rest_server用户匿名访问被拒绝

Question

我正在搜索这篇文章Consuming Drupal RestApi with c# 并http://tylerfrankenstein.com/code/drupal-services-csrf-token-firefox-poster

我在cookie和令牌中有疑问。我在firefox的海报中测试并成功发布了创建的文章.Tamper Data有请求标题。

篡改数据

nid：＆＃34; 129342＆＃34; uri：http://www.tsghy.com.cn/services/node/129342

Postman创建了邮政编码

                var client = new RestClient("http://www.tsghy.com.cn/services/node");
            var request = new RestRequest(Method.POST);
            request.AddHeader("postman-token", "5c28c9d6-d640-a4f0-a549-b6018e62907d");
            request.AddHeader("cache-control", "no-cache");
            request.AddHeader("x-csrf-token", "s0Z17LT7neX_K6grHgoJCUPR6VcL2QxRlNLmbRWeExE");
            request.AddHeader("content-type", "application/x-www-form-urlencoded");
            request.AddParameter("application/x-www-form-urlencoded", "type=article&title=test%201", ParameterType.RequestBody);
            IRestResponse response = client.Execute(request);

我会疯了，

并替换为C＃，我已拒绝用户匿名访问。我的代码如下： 首先，我使用Rest登录Drupal

private login_user2 loginAsync2(string username, string password)
    {
        try
        {
            RestClient client = new RestClient(base_url2);
            var request = new RestRequest("user/login.json", Method.POST);
            request.AddHeader("Content-Type", "application/x-www-form-urlencoded");
            client.Authenticator = new SimpleAuthenticator("username",username,"password",password);
            var restResponse = client.Execute(request);
            var content = restResponse.Content;
            if (restResponse.StatusCode==System.Net.HttpStatusCode.OK)
            {
                login_user2 loginuser = JsonConvert.DeserializeObject<login_user2>(content.ToString());                    
                request = new RestRequest("session/token", Method.GET);
                restResponse = client.Execute(request);
                loginuser.session_token = restResponse.Content.ToString();
                return loginuser;
            }
            else {
                return null;
            }
        }
        catch (Exception ex) { throw ex; }
    }

我对login / user-＆gt;令牌和会话/令牌有疑问，哪个不同？

其次，发布创建数据：

        RestClient client = new RestClient(base_url2);
        var request = new RestRequest("node", Method.POST);
        request.AddHeader("cache-control", "no-cache"); 
        request.AddHeader("content-type", "application/json; charset=UTF-8");
        request.AddHeader("Accept", "application/json");
        request.AddHeader("cookie", "Drupal.toolbar.collapsed=0; "+current_user2.session_name+"="+current_user2.sessid+"; has_js=1");
        request.AddHeader("x-csrf-token",current_user2.session_token);
        request.AddHeader("User-Agent", "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0");
        request.AddParameter("application/json", myjobject, ParameterType.RequestBody);

        var queryresult = client.Execute(request);

Answer 1

是的，我发现密钥，restful在request.addheader（cookie，cookie）上有bug; 更改为：request.AddParameter（session_name，session_id，parametertype.cookie）;