我在Axios POST请求中苦苦挣扎,但确实希望在其标头中发送cookie。
我的API路由/search/producers
正在与Postman一起使用:登录后,该路由会回答正确的数据。
对于Axios POST请求,服务器未找到req.user
,因为未发送cookie。
在浏览器中,我总是收到401 OPTIONS
响应。
响应头:
OPTIONS /search/producers HTTP/1.1
Host: localhost:4242
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:77.0) Gecko/20100101 Firefox/77.0
Accept: */*
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,withcredentials
Referer: http://localhost:3000/home
Origin: http://localhost:3000
Connection: keep-alive
请求标头:
HTTP/1.1 401 Unauthorized
X-Powered-By: Express
Access-Control-Allow-Origin: http://localhost:3000
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
Content-Type: application/json; charset=utf-8
Content-Length: 28
ETag: W/"1c-IxTdph/1tV0PHzy4xuP38jYWJTg"
Date: Thu, 25 Jun 2020 22:26:37 GMT
Connection: keep-alive
这是我的代码服务器端:
检查req.user
(使用Passport创建的函数)
function isAuthenticated (req, res, next) {
console.log(req.headers.cookie) // always undefined with Axios request
if (req.user){
return next();
}else{
return res.status(401).json('Denied access')
}
}
app.use(function (req, res, next) {
res.header("Access-Control-Allow-Origin", "http://localhost:3000");
res.header("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept");
res.header("Access-Control-Allow-Credentials", "true");
res.header("Access-Control-Allow-Methods", "GET, PUT, POST, DELETE, HEAD, OPTIONS");
next();
});
app.use('/search', isAuthenticated, searchRoutes); // OK with Postman POST, blocks with Axios POST
路线本身:
router.post('/producers', function(req, res) {
if (req.body.product) {
Producers.find({productsCategories: {$regex: req.body.product, $options: 'i'}})
.then(result => {
return res.json(result)
})
.catch(error => {
return res.json("Internal Server Error")
})
}
})
我设置了withCredentials: true
客户端:
const instance = axios.create({
withCredentials: true,
})
instance
.post("search/producers", { product })
.then(res => {
...
})
所有“ GET”请求均能正常运行,并在请求标头中发送Cookie。
您能帮我找出我的代码中有什么错误或遗漏吗?谢谢你的想法。
[ EDIT ]我决定使用npm程序包cors
,它的工作原理是:
对于那些感兴趣的人:
const cors = require('cors');
const corsOptions = {
origin: 'http://localhost:3000',
methods: ['GET', 'POST', 'PUT', 'DELETE', 'OPTIONS'],
credentials: true
}
app.use(cors(corsOptions))
再次感谢您的帮助。
答案 0 :(得分:0)
我认为这与以下问题有关: https://github.com/axios/axios/issues/876
用以下内容替换您的API调用
EXPECT_CALL(mock_pthread, pthread_create(_,_,_,_))
.WillOnce(DoAll(
SaveArg<2>(&cllbk),
Return(1)
))