Angular $ http.post()请求作为OPTIONS发送到IdentityServer v3令牌端点
我有一个示例应用程序,可以在客户端使用IdentityServer v3和OpenID Connect授权代码流进行授权。我可以成功获取authorization_code和session_state但是当我调用令牌端点时会出现问题。令牌端点以Invalid HTTP status code 405
以下是Angular.js配置的代码。
Angular.js
app.js
angular.module('oidc3', ['oauth', 'ngStorage', 'base64'])
.config(function ($locationProvider, $httpProvider) {
$locationProvider.html5Mode(true);
$httpProvider.defaults.withCredentials = true;
$httpProvider.defaults.useXDomain = false;
delete $httpProvider.defaults.headers.common['X-Requested-With'];
$httpProvider.defaults.headers.post['Content-Type'] = 'application/x-www-form-urlencoded';
});
的LoginController
angular.module('oidc3')
.controller('LoginController', function ($scope, $http, $timeout, $location, $base64) {
var getParamsFromUrl = function(url) {
var splitted = url.split('?');
splitted = splitted[1].split('&');
var params = {};
for (var i = 0; i < splitted.length; i++) {
var param = splitted[i].split('=');
var key = param[0];
var value = param[1];
params[key] = value
}
return params;
};
var getToken = function (url, data, header) {
$http.defaults.headers.common.Authorization = header;
return $http.post(url, data);
};
if($location.absUrl().split('?')[1]) {
$scope.params = getParamsFromUrl($location.absUrl());
var tokenEndpoint = 'https://localhost:44333/connect/token';
var client_id = 'codeclient';
var client_secret = 'secret';
var str = client_id + ':' + client_secret;
var baseEncoded = $base64.encode(str);
var tokenData = {};
tokenData.grant_type = 'authorization_code';
tokenData.code = $scope.params.code;
tokenData.redirect_uri = 'http://localhost:8000/login.html';
var reqHeader = 'Basic ' + baseEncoded;
getToken(tokenEndpoint, tokenData, reqHeader)
.success(function (data, status, headers, config) {
console.log(data);
console.log(status);
console.log(headers);
console.log(config);
}).error(function (data, status, headers, config) {
console.log(data);
console.log(status);
console.log(headers);
console.log(config);
});
}
});
我正在使用编码的Basic和client_id手动将授权标头设置为client_secret。发送POST请求时,服务器返回405响应。 Chrome开发者工具网络部分的屏幕抓取就在这里。
但是当我没有手动设置标头时,POST请求被正确发送,并且服务器返回invalid_client错误,因为它没有办法在没有Header的情况下验证客户端。 IdentityServer v3 Trace.log消息如下所示。
使用手动设置授权标题
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.WelcomeController]: 4/29/2015 3:34:19 AM +00:00 -- Welcome page requested
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.WelcomeController]: 4/29/2015 3:34:19 AM +00:00 -- Rendering welcome page
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.AuthorizeEndpointController]: 4/29/2015 3:34:34 AM +00:00 -- Start authorize request
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:34:34 AM +00:00 -- Start authorize request protocol validation
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:34:34 AM +00:00 -- Authorize request validation success
{
"RedirectUri": "http://localhost:8000/login.html",
"ResponseType": "code",
"ResponseMode": "query",
"Flow": "AuthorizationCode",
"RequestedScopes": "openid profile email",
"State": "1430278473164",
"Nonce": "nonce",
"SessionId": "585c26034281e898b73012e9335868cb",
"Raw": {
"response_type": "code",
"client_id": "codeclient",
"redirect_uri": "http://localhost:8000/login.html",
"scope": "openid profile email",
"state": "1430278473164",
"nonce": "nonce"
}
}
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:34:34 AM +00:00 -- Start authorize request client validation
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:34:34 AM +00:00 -- Authorize request validation success
{
"ClientId": "codeclient",
"ClientName": "Code Flow Client Demo",
"RedirectUri": "http://localhost:8000/login.html",
"AllowedRedirectUris": [
"https://localhost:44312/callback",
"http://localhost:63342/oidc_test/redirect.html",
"http://localhost:8000/login.html",
"https://localhost:4443/login.html"
],
"SubjectId": "88421113",
"ResponseType": "code",
"ResponseMode": "query",
"Flow": "AuthorizationCode",
"RequestedScopes": "openid profile email",
"State": "1430278473164",
"Nonce": "nonce",
"SessionId": "585c26034281e898b73012e9335868cb",
"Raw": {
"response_type": "code",
"client_id": "codeclient",
"redirect_uri": "http://localhost:8000/login.html",
"scope": "openid profile email",
"state": "1430278473164",
"nonce": "nonce"
}
}
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.AuthorizeEndpointController]: 4/29/2015 3:34:34 AM +00:00 -- Showing consent screen
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.AuthorizeEndpointController]: 4/29/2015 3:34:34 AM +00:00 -- End authorize request
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.AuthorizeEndpointController]: 4/29/2015 3:34:36 AM +00:00 -- Resuming from consent, restarting validation
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:34:36 AM +00:00 -- Start authorize request protocol validation
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:34:36 AM +00:00 -- Authorize request validation success
{
"RedirectUri": "http://localhost:8000/login.html",
"ResponseType": "code",
"ResponseMode": "query",
"Flow": "AuthorizationCode",
"RequestedScopes": "openid profile email",
"State": "1430278473164",
"Nonce": "nonce",
"SessionId": "585c26034281e898b73012e9335868cb",
"Raw": {
"response_type": "code",
"client_id": "codeclient",
"redirect_uri": "http://localhost:8000/login.html",
"scope": "openid profile email",
"state": "1430278473164",
"nonce": "nonce"
}
}
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:34:36 AM +00:00 -- Start authorize request client validation
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:34:36 AM +00:00 -- Authorize request validation success
{
"ClientId": "codeclient",
"ClientName": "Code Flow Client Demo",
"RedirectUri": "http://localhost:8000/login.html",
"AllowedRedirectUris": [
"https://localhost:44312/callback",
"http://localhost:63342/oidc_test/redirect.html",
"http://localhost:8000/login.html",
"https://localhost:4443/login.html"
],
"SubjectId": "88421113",
"ResponseType": "code",
"ResponseMode": "query",
"Flow": "AuthorizationCode",
"RequestedScopes": "openid profile email",
"State": "1430278473164",
"Nonce": "nonce",
"SessionId": "585c26034281e898b73012e9335868cb",
"Raw": {
"response_type": "code",
"client_id": "codeclient",
"redirect_uri": "http://localhost:8000/login.html",
"scope": "openid profile email",
"state": "1430278473164",
"nonce": "nonce"
}
}
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.ResponseHandling.AuthorizeResponseGenerator]: 4/29/2015 3:34:36 AM +00:00 -- Creating Authorization Code Flow response.
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Results.AuthorizeRedirectResult]: 4/29/2015 3:34:36 AM +00:00 -- Redirecting to: http://localhost:8000/login.html
无需手动设置授权标头
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.WelcomeController]: 4/29/2015 3:37:39 AM +00:00 -- Welcome page requested
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.WelcomeController]: 4/29/2015 3:37:39 AM +00:00 -- Rendering welcome page
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.AuthorizeEndpointController]: 4/29/2015 3:37:52 AM +00:00 -- Start authorize request
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:37:52 AM +00:00 -- Start authorize request protocol validation
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:37:52 AM +00:00 -- Authorize request validation success
{
"RedirectUri": "http://localhost:8000/login.html",
"ResponseType": "code",
"ResponseMode": "query",
"Flow": "AuthorizationCode",
"RequestedScopes": "openid profile email",
"State": "1430278670509",
"Nonce": "nonce",
"SessionId": "585c26034281e898b73012e9335868cb",
"Raw": {
"response_type": "code",
"client_id": "codeclient",
"redirect_uri": "http://localhost:8000/login.html",
"scope": "openid profile email",
"state": "1430278670509",
"nonce": "nonce"
}
}
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:37:52 AM +00:00 -- Start authorize request client validation
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:37:52 AM +00:00 -- Authorize request validation success
{
"ClientId": "codeclient",
"ClientName": "Code Flow Client Demo",
"RedirectUri": "http://localhost:8000/login.html",
"AllowedRedirectUris": [
"https://localhost:44312/callback",
"http://localhost:63342/oidc_test/redirect.html",
"http://localhost:8000/login.html",
"https://localhost:4443/login.html"
],
"SubjectId": "88421113",
"ResponseType": "code",
"ResponseMode": "query",
"Flow": "AuthorizationCode",
"RequestedScopes": "openid profile email",
"State": "1430278670509",
"Nonce": "nonce",
"SessionId": "585c26034281e898b73012e9335868cb",
"Raw": {
"response_type": "code",
"client_id": "codeclient",
"redirect_uri": "http://localhost:8000/login.html",
"scope": "openid profile email",
"state": "1430278670509",
"nonce": "nonce"
}
}
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.AuthorizeEndpointController]: 4/29/2015 3:37:52 AM +00:00 -- Showing consent screen
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.AuthorizeEndpointController]: 4/29/2015 3:37:52 AM +00:00 -- End authorize request
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.AuthorizeEndpointController]: 4/29/2015 3:37:54 AM +00:00 -- Resuming from consent, restarting validation
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:37:54 AM +00:00 -- Start authorize request protocol validation
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:37:54 AM +00:00 -- Authorize request validation success
{
"RedirectUri": "http://localhost:8000/login.html",
"ResponseType": "code",
"ResponseMode": "query",
"Flow": "AuthorizationCode",
"RequestedScopes": "openid profile email",
"State": "1430278670509",
"Nonce": "nonce",
"SessionId": "585c26034281e898b73012e9335868cb",
"Raw": {
"response_type": "code",
"client_id": "codeclient",
"redirect_uri": "http://localhost:8000/login.html",
"scope": "openid profile email",
"state": "1430278670509",
"nonce": "nonce"
}
}
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:37:54 AM +00:00 -- Start authorize request client validation
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.AuthorizeRequestValidator]: 4/29/2015 3:37:54 AM +00:00 -- Authorize request validation success
{
"ClientId": "codeclient",
"ClientName": "Code Flow Client Demo",
"RedirectUri": "http://localhost:8000/login.html",
"AllowedRedirectUris": [
"https://localhost:44312/callback",
"http://localhost:63342/oidc_test/redirect.html",
"http://localhost:8000/login.html",
"https://localhost:4443/login.html"
],
"SubjectId": "88421113",
"ResponseType": "code",
"ResponseMode": "query",
"Flow": "AuthorizationCode",
"RequestedScopes": "openid profile email",
"State": "1430278670509",
"Nonce": "nonce",
"SessionId": "585c26034281e898b73012e9335868cb",
"Raw": {
"response_type": "code",
"client_id": "codeclient",
"redirect_uri": "http://localhost:8000/login.html",
"scope": "openid profile email",
"state": "1430278670509",
"nonce": "nonce"
}
}
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.ResponseHandling.AuthorizeResponseGenerator]: 4/29/2015 3:37:54 AM +00:00 -- Creating Authorization Code Flow response.
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Results.AuthorizeRedirectResult]: 4/29/2015 3:37:54 AM +00:00 -- Redirecting to: http://localhost:8000/login.html
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.TokenEndpointController]: 4/29/2015 3:37:55 AM +00:00 -- Start token request
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Validation.ClientValidator]: 4/29/2015 3:37:55 AM +00:00 -- Start client validation
iisexpress.exe Error: 0 : [Thinktecture.IdentityServer.Core.Validation.ClientValidator]: 4/29/2015 3:37:55 AM +00:00 -- No or malformed client credential found.
{}
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Endpoints.TokenEndpointController]: 4/29/2015 3:37:55 AM +00:00 -- End token request
iisexpress.exe Information: 0 : [Thinktecture.IdentityServer.Core.Results.TokenErrorResult]: 4/29/2015 3:37:55 AM +00:00 -- Returning error: invalid_client
我做了一些研究,发现这与CORS有关,这是由于预检检查我的客户端是否可以访问我正在呼叫的端点。如何避免这种情况并将POST请求发送到令牌端点。
0 个答案:
没有答案
相关问题
- AngularJS $ http.post服务器不允许使用方法OPTIONS的请求
- 使用IdentityServer v3的JWT承载令牌流
- Angular $ http.post()请求作为OPTIONS发送到IdentityServer v3令牌端点
- ThinkTecture IdentityServer V3在运行时访问选项
- Angular http.post作为Options方法请求
- http.post()方法错误的请求问题
- 必需参数,用于使用PostMan测试IdentityServer令牌端点
- IdentityServer v3未从Authorize端点返回
- Angular 7 http.post JSON数字作为字符串发送
- http.post()未发送请求并获取错误:“指定的令牌无效”
最新问题
- 我写了这段代码,但我无法理解我的错误
- 我无法从一个代码实例的列表中删除 None 值,但我可以在另一个实例中。为什么它适用于一个细分市场而不适用于另一个细分市场?
- 是否有可能使 loadstring 不可能等于打印?卢阿
- java中的random.expovariate()
- Appscript 通过会议在 Google 日历中发送电子邮件和创建活动
- 为什么我的 Onclick 箭头功能在 React 中不起作用?
- 在此代码中是否有使用“this”的替代方法?
- 在 SQL Server 和 PostgreSQL 上查询,我如何从第一个表获得第二个表的可视化
- 每千个数字得到
- 更新了城市边界 KML 文件的来源?