Question

升级到V2端点后，使用@peerAuthenticator的API无法验证对等端。我使用@Authenticator进行了测试并遇到了同样的问题，忽略了执行。

我创建了一个repository on GitHub来测试一个空的应用程序。

的步骤创建的

运行应用mvn appengine:run后，您可以请求3个端点：
- http://localhost:8080/_ah/api/myapi/v1/firstApiMethod（没有任何身份验证）
- http://localhost:8080/_ah/api/myapi/v1/b（@authenticator）
- http://localhost:8080/_ah/api/myapi/v1/c（@peerAuthenticator）

API

@Api(name = "myapi", version = "v1")
public class YourFirstAPI {

    @ApiMethod(name = "firstApiMethod", path = "firstApiMethod", httpMethod = HttpMethod.GET)
    public TestObject a() {
        return new TestObject();
    }

    @ApiMethod(name = "b", path = "b", httpMethod = HttpMethod.GET, authenticators = {Authenticator.class})
    public TestObject b() {
        return new TestObject();
    }

    @ApiMethod(name = "c", path = "c", httpMethod = HttpMethod.GET, peerAuthenticators = PeerAuthenticator.class)
    public TestObject c() {
        return new TestObject();
    }
}

身份验证

public class Authenticator implements com.google.api.server.spi.config.Authenticator {

    @Override
    public User authenticate(HttpServletRequest arg0) throws ServiceException {
        throw new ServiceException(401, "unauthorized");
    }

}

PeerAuthenticator

public class PeerAuthenticator implements com.google.api.server.spi.config.PeerAuthenticator{

    @Override
    public boolean authenticate(HttpServletRequest arg0) {
        // TODO Auto-generated method stub
        return true;
    }

}

有没有人有同样的问题？任何解决方案？

Answer 1

您未在@Api或@ApiMethod注释中设置身份验证器或对等身份验证器。请参阅the Javadoc。

Authenticator和PeerAuthenticator不工作的Appengine端点

1 个答案: