0

我目前正在创建一个小型应用程序并遇到了问题。我正在使用烧瓶 jwt 模块,以便用户检索令牌以便能够访问在 python 中公开的 api。我正在使用 angularjs 进行前端开发。当我尝试登录我的 api 所在的服务器时,返回 400 错误

"POST /auth HTTP/1.1" 400

根据文档,我所要做的就是将我的凭据传递给身份验证端点,我应该能够取回一个令牌,如页面所示:https ://pythonhosted.org/Flask-JWT/

这是我当前的应用服务器实现:

from flask import Flask
from flask_jwt import JWT, jwt_required, current_identity
from flask.ext.cors import CORS
from werkzeug.security import safe_str_cmp
from wol import User, db
import hashlib


def authenticate(username, password):
    user = User.query.filter_by(username=username).first()
    print str(user)
    if user and safe_str_cmp(user.password.encode('utf-8'), password.encode('utf-8')):
        return user


def identity(payload):
    user_id = payload['identity']
    return User.query.filter_by(UserID=user_id)


app = Flask(__name__)
CORS(app)
app.debug = True
app.config['SECRET_KEY'] = 'super-secret'

jwt = JWT(app, authenticate, identity)
admin = User("test", "test1")
db.session.add(admin)
db.session.commit()

@app.route('/protected')
@jwt_required()
def protected():
    return '%s' % current_identity


@app.route('/register', methods=['POST'])
def register(username, password, confirmPassword):
    # we probably want to hash these passwords when storing in db
    # we'll hash both the password and confirm password
    pass_hash = hashlib.sha256(password).hexdigest()
    conf_pass_hash = hashlib.sha256(confirmPassword).hexdigest()

    if pass_hash == conf_pass_hash:
        new_user = User(username, password)
        db.session.add(new_user)
        db.session.commit()

@app.route('/allusers')
def get_all_users():
    users = User.query.all()
    return users


if __name__ == '__main__':
    app.run(host='0.0.0.0')

这是我的 angularjs 实现:

(function() {
      angular.module('loginApp', []).controller('loginController', function($scope, $http) {
        $scope.data = {};

        //we can now process the form
        $scope.processForm = function() {
          $http({
          method  : 'POST',
          url     : 'http://192.168.0.99:5000/auth',
          data    : $.param($scope.data),  // pass in data as strings
          headers : { 'Content-Type': 'application/json' }  // set the headers so angular passing info as form data (not request payload)
         })
          .success(function(data) {
            console.log("successful")
            console.log(data);
          });
        };
      });
  }());

我在运行我的 python 代码的服务器上设置了调试模式,它返回 400

4

1 回答 1

1

哦,这是因为您使用的是$.param,它将对象序列化为查询字符串参数,但 API 需要 JSON。你应该做:

data: JSON.stringify($scope.data)

反而。

于 2016-05-24T01:55:39.553 回答