护照Jwt未授权
问题描述:
你好,我试图在我的webapp上实现passport-jwt。但它不会工作我见过几个相同的职位,并试图做他们做的,但在我的情况下,它没有奏效。护照Jwt未授权
这里有一些Authenticating node API with passport-jwt
passport local strategy not getting called
我已经试过那些和它没有工作。 这里是我的代码在我的passport.js
var config = require('./config');
var JwtStrategy = require('passport-jwt').Strategy,
ExtractJwt = require('passport-jwt').ExtractJwt;
module.exports =
function(passport){
var opts ={};
opts.jwtFromRequest = ExtractJwt.fromAuthHeaderAsBearerToken();
opts.secretOrKey = config.secret;
passport.use(new JwtStrategy(opts,function(jwt_payload,done){
console.log('HERE');
console.log(jwt_payload);
User.findOne({id:jwt_payload._id},function(err,user){
if(err)
return done(err,false);
if(user)
return done(null,user);
else
return done(null,false);
})
}));
};
它甚至不会达到console.log('HERE');
,这是我如何生成我令牌
router.post('/login',function(req,res,next){
var username = req.body.username;
var password = req.body.password;
User.findUser(username,function(err,user){
if(err) return res.json({success:false,msg:"Error"});
if(!user) return res.json({success:false,msg:"No Such user"});
//res.json(user);
console.log(user);
if(user){
User.comparePass(password,user.password,function(err,IsMatched){
if(err) return res.json({success:false,msg:'error});
if(!IsMatched) return res.json({success:false,msg:"wrong password"});
if(IsMatched){
var token = jwt.sign(user.toObject(),config.secret,{expiresIn:604800});
res.json({success:true,token:'JWT '+ token,
user:{
name:user.name,
username:user.username,
password:user.password,
email:user.email,
contact:user.contact,
address:user.address
}
});
}
});
}
});
});
,这里是什么即时试图访问
router.get('/profile',passport.authenticate('jwt',{session:false}), function(req, res, next) {
res.json({user:req.user});
});
谢谢!
答
好吧,我已经想通了。
ExtractJwt.fromAuthHeaderWithScheme('jwt')
,而不是
ExtractJwt.fromAuthHeaderAsBearerToken();