Pass the token of an AngularJs controller to a Laravel API

Question

I am trying to pass the token that I have in my Java Script controller to authenticate to an API in Laravel. From the headers of my controller, I define an '' Authorization ':' Bearer '+ $ scope.token "to be sent to the API. But unfortunately I'm encountering this error:

"token_not_provided"

Route:

Route::get('/members', 'PessoaController@index')->middleware('jwt.auth');

I'm use JWTAuth.

My Controller API:

use Illuminate\Support\Facades\Validator;
use Illuminate\Http\Request;
use App\User;
use Illuminate\Support\Facades\DB;
use App\Http\Requests\PessoaRequest;
use Tymon\JWTAuth\Exceptions\JWTException;
use Tymon\JWTAuth\Facades\JWTAuth;

class PessoaController extends Controller
{

protected $user;

    public function __construct(\Illuminate\Http\Request $request)
{
    $header = $request->header('Authorization');

    return response([
        'status' => 'success'
    ]) ->header('Authorization', $header);
}

Angular Controller:

(function() {
 app.controller('MemberController', [
'$scope', '$rootScope', 'AppConfig', '$http',
function($scope, $rootScope, AppConfig, $http) {
  var vm = this;
  $rootScope.page.title = 'SEC BASE';

  $rootScope.authenticated = true;
  $scope.token = $rootScope.user.remember_token;
   getMembers();

    // Obtem a listagem de todos os usuarios
  function getMembers() {
      Loading.show();
    $http({
        headers: {
            'Content-Type' : 'application/json',
            'Authorization' : 'Bearer ' + token
        },
        method: 'GET',
        url: AppConfig.ApiUrl + 'members'
    }).then( response => {
      // console.log(response);
      $scope.members = response.data;
    }).finally(Loading.hide)
        .catch(function(err) {
            console.log(err);
        });
  }
  }
  ]);
})();

Handler.php:

use Exception;
use Illuminate\Auth\Access\AuthorizationException;
use Illuminate\Auth\AuthenticationException;
use Illuminate\Foundation\Exceptions\Handler as ExceptionHandler;
use Tymon\JWTAuth\Facades\JWTAuth;
public function render($request, Exception $exception)
{
    // detect instance
    try {
        $user = JWTAuth::parseToken()->authenticate();
    } catch (Exception $e) {
        if ($e instanceof \Tymon\JWTAuth\Exceptions\TokenInvalidException){
            return $this->respondWithError("Token is Invalid");
        }else if ($e instanceof \Tymon\JWTAuth\Exceptions\TokenExpiredException){
            return $this->respondWithError(['error'=>'Token is Expired']);
        }else{
            return $this->respondWithError(['error'=>'Something is wrong']);
        }
    }
    return $next($request);
}

Error return:

`'Bearer ' + $scope.token`. Notice the space that is missing in your Angular JS code. — nice_dev, Oct 20 '18 at 16:14
You have to have that space. Otherwise, it will consider the `Authorization` value as a single string. — nice_dev, Oct 20 '18 at 16:44
400 bad request is not an authorization issue. The parameters sent to the request and type of request made is not in the desired form. — nice_dev, Oct 21 '18 at 12:36
I realized that mistake, my friend. So I'm looking for a solution. — Vinícius Matos, Oct 21 '18 at 12:54
Show me the way in which headers were sent, in the network tab — nice_dev, Oct 21 '18 at 16:26
Well, I don't see any authorization header sent with bearer and token. — nice_dev, Oct 21 '18 at 18:40
316/5000 Traduzir do: Inglês I'm passing through the controller AngularJs: $ http ({ method: 'GET', url: AppConfig.ApiUrl + 'members', headers: { 'Content-Type': 'application / x-www-form-urlencoded; charset = UTF-8 ', 'Accept': 'application / json', 'Authorization': 'Bearer' + $ scope.token, } — Vinícius Matos, Oct 21 '18 at 18:48
Ok, there are a few things to consider. You are getting `token_not_provided` which doesn't seem to be present in your `Handler.php`. So, certainly it might be coming from some middleware. Secondly, you will have to allow your frontend application to access your backend API by passing a `Access-control-allow-origin` header in your API response from the backend. Thirdly, like I said, if these are set properly, you should start seeing the authorization header being sent properly in your Request headers. — nice_dev, Oct 21 '18 at 19:42
ok, so headers are going fine. You will have to see the backend code to understand what you are doing, which throws this bad request. — nice_dev, Oct 22 '18 at 12:57
So, what is that controller or middleware that throws this 400 bad request? — nice_dev, Oct 22 '18 at 15:17
My api is defined with Route :: get ('/ members', 'PersonController @ index') -> middleware ('jwt.aut'); I apologize for my English. — Vinícius Matos, Oct 22 '18 at 15:31
ok, so you will have to share the Person controller and the middleware, for me to understand what might be going wrong. — nice_dev, Oct 22 '18 at 15:39
I edited. All functions are in the question, including the route. — Vinícius Matos, Oct 22 '18 at 22:51

score 0 · Answer 1 · answered Oct 29 '18 at 09:29

The way you build the request looks good. It looks like the error comes from the API server that does not receive the token.

If you are running your PHP application using Apache, then you should have a look at this question and the accepted answer.

Apache does not correctly serves the authorization header to the applications. A dedicated rule have to be set in you .htaccess to get it.

Subhash Chavda · Answer 2 · 2018-10-30T15:17:03.263

0

If Bearer is not working then you have to send token with parameter data

Not in headers. i also have faced this issue and fixed by sending token with body parameter.

Try to send with Body parameters.

If this doesnt work then also check with changing middleware code

here is 1 line you need to change

public function handle($request, Closure $next)
{
    try{
        $user = JWTAuth::toUser($request->input('token'));
        // this will get token from body parameter

edited Oct 30 '18 at 15:17

answered Oct 30 '18 at 15:11

Subhash Chavda

86
1
10

the toUser class, would be my user class that I use in authentication? – Vinícius Matos Oct 31 '18 at 01:06
toUser us JWTAuth function you can use it directly like i have given in code and pass token in body param – Subhash Chavda Oct 31 '18 at 06:53

Pass the token of an AngularJs controller to a Laravel API

2 Answers2