【发布时间】:2016-07-28 18:54:06
【问题描述】:
我正在尝试使用纯 ruby、active_record、her 和 faraday 来访问 REST API。
目前我正在尝试两种方法:
▶ cat lib/auth.rb
class MyTokenAuthentication < Faraday::Middleware
def call(env)
env[:request_headers]["Authorization: Token"] = RequestStore.store[:my_api_token]
@app.call(env)
end
end
和
▶ cat lib/token.rb
class TokenAuth < Faraday::Middleware
def initialize(app, options={})
@app = app
@options = options
end
def call(env)
binding.pry
env[:request_headers]["Authorization: Token"] = @options[:token] if @options.include?(:token)
env[:request_headers]["Accept"] = "application/json\; version=v1"
@app.call(env)
end
end
auth.rb 对应 Faraday::Request::TokenAuthentication
token.rb 对应 #c.use TokenAuth, :token => "9234bca04b2b9aaceab919770528af13a92447ff"
我只是根据测试需要注释掉。
require_relative './lib/auth'
require_relative './lib/token'
db_config = YAML::load(File.open('config/database.yml'))
db_config_admin = db_config.merge({'database' => 'superbot', 'schema_search_path' => 'public'})
ActiveRecord::Base.establish_connection(db_config_admin[ENV['RAILS_ENV']])
RequestStore.store[:my_api_token] = '9234bca04b2b9aaceab919770528af13a92447ff' # or something similar based on `session`
Her::API.setup url: "http://cool:880/api/" do |c|
# Request
c.use Faraday::Request::TokenAuthentication, :token => "9234bca04b2b9aaceab919770528af13a92447ff"
# c.use TokenAuth, :token => "9234bca04b2b9aaceab919770528af13a92447ff"
c.use Faraday::Request::UrlEncoded
c.use Her::Middleware::AcceptJSON
# Response
c.use Her::Middleware::DefaultParseJSON
# Adapter
c.use Faraday::Adapter::NetHttp
end
当使用 curl 并通过 tcpdump 查看标头时,我得到:
curl -X GET http://cool:880/api/ -H 'Authorization: token 9234bca04b2b9aaceab919770528af13a92447ff'
...[...pGET /api/ HTTP/1.1
Host: cool:880
User-Agent: curl/7.43.0
Accept: */*
Authorization: token 9234bca04b2b9aaceab919770528af13a92447ff
使用自己的中间件:
tcpdump:
........GET /api/clusters/2/ HTTP/1.1
User-Agent: Faraday v0.9.2
Authorization: token: 9234bca04b2b9aaceab919770528af13a92447ff
Accept: application/json
Accept-Encoding: gzip;q=1.0,deflate;q=0.6,identity;q=0.3
Connection: close
Host: 134.6.27.164:880
Pry
{"User-Agent"=>"Faraday v0.9.2",
"Authorization: Token"=>
"9234bca04b2b9aaceab919770528af13a92447ff",
"Accept"=>"application/json"}
{"detail":"Authentication credentials were not provided."}
使用 Faraday::Request::TokenAuthentication
4: def self.header(token, options = nil)
=> 5: binding.pry
6: options ||= {}
7: options[:token] = token
8: super(:Token, options)
9: end
[1] pry(Faraday::Request::TokenAuthentication)> options ||= {}
=> {}
[2] pry(Faraday::Request::TokenAuthentication)> options[:token] = token
=> {:token=>"9234bca04b2b9aaceab919770528af13a92447ff"}
[3] pry(Faraday::Request::TokenAuthentication)> super(:Token, options)
=> "Token token=\"{:token=>\\\"9234bca04b2b9aaceab919770528af13a92447ff\\\"}\""
User-Agent: Faraday v0.9.2
Authorization: Token token="{:token=>\"9234bca04b2b9aaceab919770528af13a92447ff\"}"
Accept: application/json
Accept-Encoding: gzip;q=1.0,deflate;q=0.6,identity;q=0.3
Connection: close
Host: cool:880
{"detail":"Invalid token."}
我很困惑……
看来 Faraday::Request::TokenAuthentication 格式正确但连接错误..
我的中间件似乎可以正常工作,但它在令牌后添加了一个冒号“:”:
Authorization: token: 9234bca04b2b9aaceab919770528af13a92447ff
应该是:
Authorization: token 9234bca04b2b9aaceab919770528af13a92447ff
谢谢!
【问题讨论】:
标签: ruby api authentication orm faraday