Android Retrofit和JWT身份验证

时间:2020-04-22 14:49:55

标签: android jwt retrofit2

我正在使用JWT身份验证并将auth令牌存储在共享首选项中。我无法找到将授权标头添加到改造客户端的方法。这就是为什么我第一次从网络通话中收到401错误的原因,而第二次它却正常运行。如何解决?

@Module
public class AppRetrofitModule {


private static final String TAG = "AppRetrofitModule";

private static Retrofit.Builder builder
        = new Retrofit.Builder()
        .baseUrl(Config.REST_BASE_URL)
        .addConverterFactory(GsonConverterFactory.create());

private static Retrofit retrofit = builder.addCallAdapterFactory(RxJava2CallAdapterFactory.create()).build();

private static OkHttpClient.Builder httpClient
        = new OkHttpClient.Builder();


private static HttpLoggingInterceptor logging
        = new HttpLoggingInterceptor()
        .setLevel(HttpLoggingInterceptor.Level.BASIC);


@Singleton
@Provides
public Retrofit provideRetrofit(AppPreferencesHelper appPreferencesHelper) {


    String authToken = "Bearer " + appPreferencesHelper.getAccessToken();
    Log.d(TAG, "provideRetrofit: " + authToken);


    httpClient.addInterceptor(new Interceptor() {
        @Override
        public Response intercept(Chain chain) throws IOException {
            Request original = chain.request();

            Response response = chain.proceed(original);


            Request request = original.newBuilder()
                    .header("Authorization", authToken)
                    .method(original.method(), original.body()).build();
            return chain.proceed(request);
        }
    });

   if (!httpClient.interceptors().contains(logging)) {
       httpClient.addInterceptor(logging);
        httpClient.connectTimeout(60, TimeUnit.SECONDS);
        httpClient.callTimeout(60, TimeUnit.SECONDS);

        builder.client(httpClient.build());
        retrofit = builder.build();
    }

    return retrofit;
}

}

1 个答案:

答案 0 :(得分:1)

    httpClient.addInterceptor(new Interceptor() {
        @Override
        public Response intercept(Chain chain) throws IOException {
            Request original = chain.request();

            Response response = chain.proceed(original);
     String authToken = "Bearer " + appPreferencesHelper.getAccessToken();
 

            Request request = original.newBuilder()
                    .header("Authorization", authToken)
                    .method(original.method(), original.body()).build();
            return chain.proceed(request);
        }
    });

   if (!httpClient.interceptors().contains(logging)) {
       httpClient.addInterceptor(logging);
        httpClient.connectTimeout(60, TimeUnit.SECONDS);
        httpClient.callTimeout(60, TimeUnit.SECONDS);

        builder.client(httpClient.build());
        retrofit = builder.build();
    }

    return retrofit;

以前我犯了在拦截器之外获取 authToken 的错误。但是它需要在拦截器内部获取,以便我们也可以第一时间获取令牌。因为 authToken 值被刷新,所以它在第二次 API 调用之前工作。

相关问题
最新问题