0

我有一个可用的 rails 应用程序,它是一个包含评论和赞成/反对票的博客。移动组件是供用户登录/注销、查看文章和点赞/点赞的,现阶段不添加文章或评论。

我已经使用简单的令牌 auth gem 实现了 json 登录,我可以获得文章及其赞成/反对票,这些都可以正常工作,但这是我的问题:

如何发回 json 值?我有我的 json 代码在 Android 中工作以发布或推送 json 值,但我如何构建正确的字符串来推回?放回去的正确参数是什么?

非常感谢。

这是来自 Rails 服务器日志:

有效的 html 投票:

Started PUT "/articles/5/like" for 137.147.172.125 at 2016-03-12 09:34:43 +0000
Cannot render console from 137.147.172.125! Allowed networks: 127.0.0.1, ::1, 127.0.0.0/127.255.255.255
Processing by ArticlesController#upvote as HTML
  Parameters: {"authenticity_token"=>"4eC8xgC+1CBb51gKO7ZRzjL1BGOF6TYTnbqQcJ3evxvpmGcguYHBNYSn9v3LJMfoo3F29frntwzgyLoeI9oaLg==", "id"=>"5"}
  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["id", 1]]
  Article Load (0.1ms)  SELECT  "articles".* FROM "articles" WHERE "articles"."id" = ?  ORDER BY "articles"."created_at" DESC LIMIT 1  [["id", 5]]
   (0.3ms)  SELECT COUNT(*) FROM "votes" WHERE "votes"."votable_id" = ? AND "votes"."votable_type" = ? AND "votes"."voter_id" = ? AND "votes"."voter_type" = ? AND "votes"."vote_scope" IS NULL  [["votable_id", 5], ["votable_type", "Article"], ["voter_id", 1], ["voter_type", "User"]]
   (0.2ms)  begin transaction
  SQL (0.6ms)  INSERT INTO "votes" ("votable_id", "votable_type", "voter_id", "voter_type", "vote_flag", "vote_weight", "created_at", "updated_at") VALUES (?, ?, ?, ?, ?, ?, ?, ?)  [["votable_id", 5], ["votable_type", "Article"], ["voter_id", 1], ["voter_type", "User"], ["vote_flag", "t"], ["vote_weight", 1], ["created_at", "2016-03-12 09:34:43.393685"], ["updated_at", "2016-03-12 09:34:43.393685"]]
   (11.4ms)  commit transaction
Redirected to https://completerubyonrailscourse-adam1st.c9users.io/articles/5
Completed 302 Found in 187ms (ActiveRecord: 13.2ms)

这是我的 android 代码尝试将 json 数据推回 rails 服务器的时候:

Started PUT "/articles/5/like" for 49.199.131.149 at 2016-03-12 10:20:16 +0000
Cannot render console from 49.199.131.149! Allowed networks: 127.0.0.1, ::1, 127.0.0.0/127.255.255.255
Processing by ArticlesController#upvote as JSON
  Parameters: {"votes"=>{"votable_id"=>"5", "votable_type"=>"Article", "voter_id"=>"1", "voter_type"=>"User", "vote_flag"=>"t", "vote_weight"=>"1", "created_at"=>"2016-03-12 21:20:13.679000", "updated_at"=>"2016-03-12 21:20:13.679000"}, "id"=>"5", "article"=>{}}
Can't verify CSRF token authenticity
Completed 401 Unauthorized in 2ms (ActiveRecord: 0.0ms)

那么如何将它放入 json 数据中呢? Parameters:{"authenticity_token"=>"4eC8xgC+1CBb51gKO7ZRzjL1BGOF6TYTnbqQcJ3evxvpmGcguYHBNYSn9v3LJMfoo3F29frntwzgyLoeI9oaLg==", "id"=>"5"}

从文章控制器:

before_action :authenticate_user!, :except => [:index, :show]
before_filter :set_article, only: [:show, :edit, :update, :destroy, :upvote, :downvote]
.
.
.    
def upvote
        @article.upvote_by current_user
        flash[:success] = "Successfully liked"
        respond_to do |format|
          format.html {redirect_to :back }
          format.json { render json: { count: @article.liked_count } }
        end
      end
      def downvote
        @article.downvote_by current_user
        flash[:success] = "Successfully disliked"
        respond_to do |format|
          format.html {redirect_to :back }
          format.json { render json: { count: @article.disliked_count } }
        end
      end

从涉及投票的 show.html.erb 中:

<%= link_to like_article_path(@article), method: :put, class: 'voting' do %>
  <i class="fa fa-thumbs-up"></i>
    <%= @article.get_upvotes.size %>
<% end %>
<%= link_to dislike_article_path(@article), method: :put, class: 'voting' do %>
  <i class="fa fa-thumbs-down"></i>
    <%= @article.get_downvotes.size %>
<% end %>

Android PUT 代码(一些值硬编码用于测试):

 private class VoteTask extends UrlJsonAsyncTask {
        public VoteTask(Context context) {
            super(context);
        }

        @Override
        protected JSONObject doInBackground(String... urls) {
            HttpClient client = new DefaultHttpClient();
            HttpPut put = new HttpPut(urls[0]);
            JSONObject holder = new JSONObject();
            JSONObject voteObj = new JSONObject();
            String response = null;
            JSONObject json = new JSONObject();

            try {
                try {
                    // setup the returned values in case
                    // something goes wrong
                    json.put("success", false);
                    json.put("info", "Something went wrong. Retry!");
                    // add the user email and password to
                    // the params
                    voteObj.put("votable_id",articleId);
                    voteObj.put("votable_type", "Article");
                    voteObj.put("voter_id", "1");
                    voteObj.put("voter_type", "User");
                    voteObj.put("vote_flag", "t");
                    voteObj.put("vote_weight", "1");
                    voteObj.put("created_at", strDate);
                    voteObj.put("updated_at", strDate);
                    holder.put("votes", voteObj);
                    StringEntity se = new StringEntity(holder.toString());
                    put.setEntity(se);

                    // setup the request headers
                    put.setHeader("Accept", "application/json");
                    put.setHeader("Content-Type", "application/json");

                    response = String.valueOf(client.execute(put));
                    json = new JSONObject(response);

                } catch (IOException e) {
                    e.printStackTrace();
                    Log.e("IO", "" + e);
                }
            } catch (JSONException e) {
                e.printStackTrace();
                Log.e("JSON", "" + e);
            }

            return json;
        }
4

2 回答 2

0

将此添加到您的application_controller.rb文件中

 protect_from_forgery with: :null_session, if: Proc.new { |c| c.request.format == 'application/json' }
于 2016-03-12T10:54:21.727 回答
0

我去了简单令牌身份验证的 git https://github.com/gonzalo-bulnes/simple_token_authentication并看到了这个。

身份验证方法 2:请求标头

您还可以使用请求标头(在针对 API 进行身份验证时可能更简单):

X-用户-电子邮件 alice@example.com

X-用户令牌 1G8_s7P-V-4MGojaKD7a

所以我在投票之前把它放在标题中的投票任务中,它起作用了。

private class VoteTask extends UrlJsonAsyncTask {
        public VoteTask(Context context) {
            super(context);
        }

        @Override
        protected JSONObject doInBackground(String... urls) {
            DefaultHttpClient webClient = new DefaultHttpClient();
            HttpPut put = new HttpPut(urls[0]);
            JSONObject holder = new JSONObject();
            JSONObject voteObj = new JSONObject();
            String response = null;
            JSONObject json = new JSONObject();

            try {
                try {
                    // setup the returned values in case
                    // something goes wrong
                    json.put("success", false);
                    json.put("info", "Something went wrong. Retry!");

                    //get stored values to prove the user is authorised
                    SharedPreferences sharedPreferences = PreferenceManager.getDefaultSharedPreferences(getApplicationContext());
                    String id = sharedPreferences.getString("userId", "default value");
                    String authToken = sharedPreferences.getString("AuthToken", "default value");
                    String email = sharedPreferences.getString("email", "default value");

                    voteObj.put("votable_id",articleId);
                    voteObj.put("votable_type", "Article");
                    voteObj.put("voter_id", id);
                    voteObj.put("voter_type", "User");
                    voteObj.put("vote_flag", voteFlag);
                    voteObj.put("vote_weight", "1");
                    holder.put("votes", voteObj);
                    holder.put("article", articleId);
                    StringEntity se = new StringEntity(holder.toString());
                    put.setEntity(se);

                    // setup the request headers
                    put.setHeader("Accept", "application/json");
                    put.setHeader("Content-Type", "application/json");
                    // add email and auth token to validate
                    put.setHeader("X-User-Email", email);
                    put.setHeader("X-User-Token", authToken);

                    //response = webClient.execute(put);
                    //json = new JSONObject(response);
                    response = String.valueOf(webClient.execute(put));
                    json = new JSONObject(response);


                } catch (HttpResponseException e) {
                    e.printStackTrace();
                    Log.e("ClientProtocol", "" + e);
                    json.put("info", "Email and/or password are invalid. Retry!");
                } catch (IOException e) {
                    e.printStackTrace();
                    Log.e("IO", "" + e);
                }
            } catch (JSONException e) {
                e.printStackTrace();
                Log.e("JSON", "" + e);
            }

            return json;
        }
于 2016-03-14T12:09:23.017 回答