【问题标题】:401 response when calling a 307 redirect server调用 307 重定向服务器时的 401 响应
【发布时间】:2023-03-09 00:35:02
【问题描述】:

我已经构建了一个调用服务器的 iOS 应用程序,该服务器只接受来自白名单 IP 的调用(客户端的安全要求)。他们现在已经设置了 307 临时重定向。我已将原始根 URL 更改为新的重定向地址,现在我收到 401 - 未经授权的访问错误。除了 URL 之外,代码中的其他任何内容都没有改变。我已经使用 Postman 进行了测试,并且调用与重定向地址一起使用。有谁知道是什么导致了这个问题?我怀疑 HTTP 标头已损坏,并且不记名令牌在此过程中的某处丢失。

这是 HTTP 响应:

<NSHTTPURLResponse: 0x600003315840> { URL: https://"API URL HERE" } { Status Code: 401, Headers {
"Access-Control-Allow-Origin" =     (
    "*"
);
"Content-Length" =     (
    0
);
Date =     (
    "Wed, 06 Mar 2019 13:50:30 GMT"
);
Server =     (
    ""
);
"Www-Authenticate" =     (
    Bearer
);
"X-XSS-Protection" =     (
    "1; mode=block"
);

} }

这是 API 调用函数:

  func callAPI(jsonData: Data, childUrl: String, completionHandler: @escaping (_ success: Bool, _ data: Data, _ response: HTTPURLResponse) -> Void) {

    let access_token = cache.access_token
    let networkHeaders = [ "Content-Type": "application/json", "Authorization": access_token, "cache-control": "no-cache" ]
    print(access_token)
    let dataResponse = Data()
    let urlResponse = HTTPURLResponse()
    guard let url = URL(string: config.rootAPIUrl + childUrl) else { return }

    var request = URLRequest(url: url, cachePolicy: .useProtocolCachePolicy, timeoutInterval: 10.0)
        request.httpMethod = "POST"
        request.httpBody = jsonData
        request.allHTTPHeaderFields = networkHeaders


    let session = URLSession.shared

    session.dataTask(with: request) { data, response, error in
        if error != nil {
                    DispatchQueue.main.async {
                    completionHandler(false, dataResponse, urlResponse)
                    }
                }
        if let response = response as? HTTPURLResponse, let data = data  {
            DispatchQueue.main.async {
             completionHandler(true, data, response)
                }
            }
        }.resume()
    }

【问题讨论】:

  • 确保您发布正确的access_token 字符串。 "Authorization": "Bearer &lt;#access_token#&gt;"
  • 谢谢 - 我正在添加“Bearer” - 正如我所说,在使用重定向地址之前一切正常,并且在使用 Postman 时重定向地址有效 - 只是不是来自我的 iOS 应用程序。
  • 确保在重定向之后再次发送。您可能必须编写自定义重定向处理程序委托方法来附加原始请求中缺少的标头。

标签: ios swift nsurlsession urlsession


【解决方案1】:

经过 Apple 的大量研究和帮助。该问题是由于标头中的“授权”值丢失引起的。解决方案是实现重定向委托并重新附加标头值。这是工作代码

         func callAPI(jsonData: Data, childUrl: String, completionHandler: @escaping (_ success: Bool, _ data: Data, _ response: HTTPURLResponse) -> Void) {

    self.jsonData = jsonData

    let access_token = cache.access_token
    let networkHeaders = [ "Content-Type": "application/json", "Authorization": access_token, "cache-control": "no-cache" ]
    let dataResponse = Data()
    let urlResponse = HTTPURLResponse()
    guard let url = URL(string: config.rootAPIUrl + childUrl) else { return }

    var request = URLRequest(url: url, cachePolicy: .useProtocolCachePolicy, timeoutInterval: 10.0)
        request.httpMethod = "POST"
        request.httpBody = jsonData
        request.allHTTPHeaderFields = networkHeaders

    let configuration = URLSessionConfiguration.default
    var session = URLSession(configuration: configuration, delegate: self, delegateQueue: nil)

    session.dataTask(with: request) { data, response, error in

        if error != nil {
            DispatchQueue.main.async {
            completionHandler(false, dataResponse, urlResponse)
                    }
                }
        if let response = response as? HTTPURLResponse, let data = data  {
            DispatchQueue.main.async {
             completionHandler(true, data, response)
                    }
                }
            }.resume()
    }


func urlSession(_ session: URLSession, task: URLSessionTask, willPerformHTTPRedirection response: HTTPURLResponse, newRequest request: URLRequest, completionHandler: @escaping (URLRequest?) -> Void) {

    let access_token = cache.access_token
    let networkHeaders = [ "Content-Type": "application/json", "Authorization": access_token, "cache-control": "no-cache" ]

    guard let url = request.url else { return }
    guard let jsonData = self.jsonData else { return }

    var request = URLRequest(url: url, cachePolicy: .useProtocolCachePolicy, timeoutInterval: 10.0)
    request.httpMethod = "POST"
    request.httpBody = jsonData
    request.allHTTPHeaderFields = networkHeaders

    completionHandler(request)
}

【讨论】:

    猜你喜欢
    • 2023-03-29
    • 1970-01-01
    • 1970-01-01
    • 1970-01-01
    • 1970-01-01
    • 2017-10-18
    • 2015-04-19
    • 2018-07-15
    • 1970-01-01
    相关资源
    最近更新 更多