I am trying to make an interceptor that handles the tokens, but I don't want to make unnecessary requests for refreshToken, that is, if I am already updating the token, I want the next request to wait until it finishes updating the token and then send the request with the new token
What i tried so far:
import { Injectable } from '#angular/core';
import { AuthService } from './auth.service';
import { HttpClient, HttpErrorResponse, HttpHandler, HttpInterceptor, HttpRequest } from '#angular/common/http';
import { environment } from 'src/environments/environment';
import { catchError, filter, map, switchMap, take } from 'rxjs/operators';
import { BehaviorSubject, Observable } from 'rxjs';
#Injectable({
providedIn: 'root'
})
export class TokenInterceptorService implements HttpInterceptor {
constructor(
private auth: AuthService,
private http: HttpClient
) { }
refreshingToken = new BehaviorSubject<boolean>(false);
intercept(req: HttpRequest<any>, next: HttpHandler) {
if (!this.auth.getToken()) {
return next.handle(req)
}
const reqClone = req.clone({
setHeaders: {
authorization: `Bearer ${this.auth.getToken()}`
}
})
return next.handle(reqClone).pipe(
catchError((err: any) => {
//if error is about http
if (err instanceof HttpErrorResponse) {
if (err.url.includes('refreshToken')) {
return next.handle(reqClone)
}
//if error is not about authorization
if (err.status !== 401) {
return next.handle(reqClone)
}
if(this.refreshingToken.value === true){
return this.refreshingToken.pipe(
filter(value => value === false),
take(1),
switchMap((value)=>{
return next.handle(reqClone)
})
)
}else{
this.refreshingToken.next(true)
return this.renewToken(req).pipe(
switchMap(reqWithNewToken => {
this.refreshingToken.next(false)
return next.handle(reqWithNewToken)
})
)
}
} else {
return next.handle(reqClone)
}
})
)
}
renewToken(req: HttpRequest<any>) {
return this.http.get(`${environment.API_URL}/refreshToken`, { withCredentials: true }).pipe(
map((res: any) => {
//update access token
this.auth.setToken(res.token)
return req.clone({
setHeaders: {
authorization: `Bearer ${res.token}`
}
})
})
)
}
}
the error:
I am currently working on a logout module, however it gives me the following message.
my file logout.page.ts is the following, In the logout method I call a service that brings my alerts to confirm the one that is closing the session
import { Component, OnInit } from '#angular/core';
import {AlertController} from "#ionic/angular";
import {Router} from '#angular/router';
import { UserService } from '../../services/user.service'
import { AlertService} from '../../services/alert.service';
#Component({
selector: 'app-logout',
templateUrl: './logout.page.html',
styleUrls: ['./logout.page.scss'],
})
export class LogoutPage implements OnInit {
constructor(public alertController: AlertController,
public router: Router,
public userService: UserService,
public alertService: AlertService) { }
ngOnInit() {
}
logout() {
this.userService.logout().subscribe(
data => {
this.alertService.presentToast(data['message']);
},
error => {
console.log(error);
},
() => {
this.router.navigate(['']);
}
);
}
}
my file user.service.ts is the following in the logout method try to change the format where the application token is being brought, leave it in several ways until you reach this one, but when running the application again it throws at me that it cannot find the route that I am indicating
import { Injectable } from '#angular/core';
import {HttpClient, HttpHeaders } from "#angular/common/http";
import {environment} from "../../environments/environment";
import { EnvService } from './env.service';
import { NativeStorage } from '#ionic-native/native-storage/ngx';
import { tap } from 'rxjs/operators';
#Injectable({
providedIn: 'root'
})
export class UserService {
isLoggedIn = false;
token:any;
constructor(private http: HttpClient,
private storage: NativeStorage,
private env: EnvService,) { }
public getToken(username: string, password: string) {
const url = environment.api + 'oauth/token';
const params = {
grant_type: 'password',
client_id: environment.client_id,
client_secret: environment.client_secret,
'username': username,
'password': password,
scope: '*'
};
return this.http.post(url, params, {});
}
getPassport() {
const header = new HttpHeaders({
'Content_Type': 'application/json',
'Authorization': 'Bearer ' + localStorage.getItem('token')
});
}
logout() {
const headers = new HttpHeaders({
'Content_Type': 'application/json',
'Authorization': 'Bearer ' + localStorage.getItem('token')
});
return this.http.get(this.env.API_URL + 'oauth/logout', { headers: headers })
.pipe(
tap(data => {
this.storage.remove("token");
this.isLoggedIn = false;
delete this.token;
return data;
})
)
}
getTokenUrl() {
return this.storage.getItem('token').then(
data => {
this.token = data;
if(this.token != null) {
this.isLoggedIn=true;
} else {
this.isLoggedIn=false;
}
},
error => {
this.token = null;
this.isLoggedIn=false;
}
);
}
}
change my path from oauth / logout but the problem still persists, indicating that it cannot find that path
i've created an generic request service but it keeps returning 'ZoneAwarePromise'. I've tried to use .pipe() and .subscribe() to try to retrive the content of the request, but it's not working.
requester.service.ts
import { Injectable } from '#angular/core';
import { HttpClient } from '#angular/common/http';
#Injectable({
providedIn: 'root'
})
export class RequesterService {
constructor(private http: HttpClient) { }
request(method, url, headers, body, params) {
return this.http.request(method, url, {
body: body || {},
headers: headers || {},
params: params || {}
})
}
async get(url, params?, headers?, data?) {
return await this.request('get', url, params, headers, data)
}
async post(url, params, headers, data) {
return await this.request('post', url, params, headers, data);
}
async put(url, params, headers, data) {
return await this.request('put', url, params, headers, data);
}
async delete(url, params, headers, data) {
return await this.request('delete', url, params, headers, data);
}
}
gym-list.component.ts
import { Component, OnInit } from '#angular/core';
import { RequesterService } from 'src/app/core/Requester/requester.service';
#Component({
selector: 'app-gym-list',
templateUrl: './gym-list.component.html',
styleUrls: ['./gym-list.component.css']
})
export class GymListComponent implements OnInit {
constructor(private Requester: RequesterService) { }
ngOnInit() {
console.log(this.teste())
}
async teste() {
await this.Requester.get('https://searchs.glitch.me/proposalcontent')
}
}
import { HttpClient, HttpHeaders, HttpRequest, HttpEventType, HttpEvent, HttpResponse, HttpErrorResponse } from "#angular/common/http";
import { Observable, from } from 'rxjs';
import { IGenericHttpClient } from './igeneric-http-client';
import { Injectable } from '#angular/core';
import { HttpMethod } from '../view-models/component-type.enum'
import { IRequestOptions } from '../view-models/interface';
import { EnvironmentViewModel } from '../view-models/environment-view-model';
import { retry } from 'rxjs/operators';
#Injectable()
export class GenericHttpClient<T> implements IGenericHttpClient<T>{
constructor(private httpClient: HttpClient, private environment: EnvironmentViewModel) { }
public Post(destinationUrl: string, options?: IRequestOptions): Observable<T> {
return this.request<T>(HttpMethod.Post, destinationUrl, options);
}
public Put(destinationUrl: string, options?: IRequestOptions): Observable<T> {
return this.request<T>(HttpMethod.Put, destinationUrl, options);
}
public Get(destinationUrl: string, options?: IRequestOptions): Observable<T> {
return this.request<T>(HttpMethod.Get, destinationUrl, options);
}
public Delete(destinationUrl: string, options?: IRequestOptions): Observable<T> {
return this.request<T>(HttpMethod.Delete, destinationUrl, options);
}
private request<T>(method: string, url: string, options?: IRequestOptions): Observable<T> {
return Observable.create((observer: any) => {
this.httpClient.request<T>(new HttpRequest(method, this.environment.baseUrl + url, options)).subscribe(
(response: any) => {
const responsTye = response as HttpEvent<any>
switch (responsTye.type) {
case HttpEventType.Sent:
console.log('Request sent!');
break;
case HttpEventType.ResponseHeader:
console.log('Response header received!');
break;
case HttpEventType.DownloadProgress:
const kbLoaded = Math.round(responsTye.loaded / 1024);
console.log(`Download in progress! ${kbLoaded}Kb loaded`);
break;
case HttpEventType.Response:
observer.next(response.body);
console.log('😺 Done!', responsTye.body);
}
},
(error) => {
switch (error.status) {
case 403:
observer.complete();
break;
default:
observer.error(error);
break;
}
}
);
});
}
}
You are trying to return an non-async function with await.
request(method, url, headers, body, params) {
return this.http.request(method, url, {
body: body || {},
headers: headers || {},
params: params || {}
})
}
async get(url, params?, headers?, data?) {
return await this.request('get', url, params, headers, data)
}
You shouldn't use async-await system here.
Try this:
get(url, params?, headers?, data?) {
return this.request('get', url, params, headers, data)
}
And subscribe this method in your component.ts file.
Like this:
Requester.get.subscribe(....)
Actually, you can create an abstract base service class that can be extended in any service. This will automatically handle the error by calling another service that has a generic error handling code. If you pass customError flag the error will be returned into the component for handing custom error. This method is using RxJs Observables which can be subscribed in component.ts and catch the response and error.
import { HttpClient, HttpHeaders } from "#angular/common/http";
import { Observable } from "rxjs";
import { tap } from "rxjs/operators";
import { HttpOptionsService } from "../../services/httpoptions.service";
export abstract class ServiceBase {
constructor(
private http: HttpClient,
private httpOptionService: HttpOptionsService
) {}
httpOptions = {
headers: new HttpHeaders({
"Content-Type": "application/json"
})
};
getFormattedPostRequest(
url: string,
body: any,
customError: boolean = false): Observable<any> {
return this.pipeTapObservable(
this.http.post(url, body, this.httpOptions),
customError
);
}
getFormattedPutRequest(
url: string,
body: any,
customError: boolean = false
): Observable<any> {
return this.pipeTapObservable(
this.http.put(url, body, this.httpOptions),
customError
);
}
getFormattedGetRequest(
url: string,
customError: boolean = false
): Observable<any> {
return this.pipeTapObservable(
this.http.get(url, this.httpOptions),
customError
);
}
getFormattedDeleteRequest(
url: string,
customError: boolean = false
): Observable<any> {
return this.pipeTapObservable(
this.http.delete(url, this.httpOptions),
customError
);
}
private pipeTapObservable(
request: Observable<any>,
customError: boolean = false
): Observable<any> {
return request.pipe(
tap(
response => response,
error => {
!customError &&
this.httpOptionService.handleError(error);
return error;
}
)
);
}
}
If you have some common headers to be added you can create an interceptor to add them. You can use it in any service like below.
#Injectable()
export class MyService extends ServiceBase {
constructor(
http: HttpClient,
httpOptionService: HttpOptionsService
) {
super(http, httpOptionService);
}
}
you can use async/await but this syntax work on promise type and request method return an observable so you just need to return a promise from request method or you can do it on the return statement on the get,post,put,delete method
import { Injectable } from '#angular/core';
import { HttpClient } from '#angular/common/http';
#Injectable({
providedIn: 'root'
})
export class RequesterService {
constructor(private http: HttpClient) { }
request(method, url, headers, body, params) {
return this.http.request(method, url, {
body: body || {},
headers: headers || {},
params: params || {}
}).toPromise();
}
get(url, params?, headers?, data?) {
return this.request('get', url, params, headers, data);
}
post(url, params, headers, data) {
return this.request('post', url, params, headers, data);
}
put(url, params, headers, data) {
return this.request('put', url, params, headers, data);
}
delete(url, params, headers, data) {
return this.request('delete', url, params, headers, data);
}
}
component
import { Component, OnInit } from '#angular/core';
import { RequesterService } from 'src/app/core/Requester/requester.service';
#Component({
selector: 'app-gym-list',
templateUrl: './gym-list.component.html',
styleUrls: ['./gym-list.component.css']
})
export class GymListComponent implements OnInit {
constructor(private Requester: RequesterService) { }
ngOnInit() {
console.log(this.teste())
}
async teste() {
const result = await this.Requester.get('https://searchs.glitch.me/proposalcontent');
console.log(result); 👈
}
}
I'm trying to authenticate all the API calls to the backend using an HttpInterceptor in an Ionic 4 project. The token is saved through NativeStorage. The problem occurs when I make the login call. Since there is not yet an available token, NativeStorage returns an error interrupting the chain: NativeStorageError {code: 2, source: "Native", exception: null}
httpConfig.interceptor.ts
import {
HttpRequest,
HttpHandler,
HttpEvent,
HttpInterceptor,
HttpResponse,
HttpErrorResponse
} from '#angular/common/http';
import { Observable, throwError, from } from 'rxjs';
import { map, catchError, switchMap } from 'rxjs/operators';
import { Injectable } from '#angular/core';
import { LoadingController } from '#ionic/angular';
import { NativeStorage } from '#ionic-native/native-storage/ngx';
const TOKEN_KEY = 'auth-token';
#Injectable()
export class HttpConfigInterceptor implements HttpInterceptor {
loaderToShow: any;
loadingPresent = false;
debug = false;
constructor(
public loadingController: LoadingController,
private storage: NativeStorage
)
{ }
intercept(request: HttpRequest<any>, next: HttpHandler): Observable<HttpEvent<any>> {
return from(this.storage.getItem(TOKEN_KEY))
.pipe(
switchMap(token => {
if (token) {
request = request.clone({ headers: request.headers.set('Authorization', 'Bearer ' + token.access_token) });
}
if (!request.headers.has('Content-Type')) {
request = request.clone({ headers: request.headers.set('Content-Type', 'application/json') });
}
this.showLoader();
return next.handle(request).pipe(
map((event: HttpEvent<any>) => {
if (event instanceof HttpResponse) {
console.log('event--->>>', event);
}
this.hideLoader();
return event;
}),
catchError((error: HttpErrorResponse) => {
this.hideLoader();
return throwError(error);
})
);
})
);
}
showLoader() {
console.log("show loader");
this.loaderToShow = this.loadingController.create({
message: 'Cargando datos...'
}).then((res) => {
this.loadingPresent = true;
res.present();
res.onDidDismiss().then((dis) => {
console.log('Loading dismissed!');
});
});
}
hideLoader() {
if(this.loadingPresent) {
this.loadingController.dismiss();
this.loadingPresent = false;
}
}
}
auth.service.ts
import { HttpClient, HttpHeaders } from '#angular/common/http';
import { Injectable } from '#angular/core';
import { Platform } from '#ionic/angular';
import { tap, map } from 'rxjs/operators';
import { NativeStorage } from '#ionic-native/native-storage/ngx';
import { environment } from '../../environments/environment';
import { User } from '../models/user';
import { BehaviorSubject } from 'rxjs';
const TOKEN_KEY = 'auth-token';
#Injectable({
providedIn: 'root'
})
export class AuthService {
isLoggedIn = false;
token:any;
authenticationState = new BehaviorSubject(false);
constructor(
private http: HttpClient,
private storage: NativeStorage,
private plt: Platform
)
{
this.plt.ready().then(() => {
this.checkToken();
});
}
login(login: String, password: String) {
return this.http.post(environment.API_URL + 'auth/login',
{ login: login, password: password }
).pipe(
map(token => {
this.storage.setItem(TOKEN_KEY, token)
.then(
() => {
this.authenticationState.next(true);
},
error => console.error('Error storing item', error)
);
}),
);
}
logout() {
return this.http.get(environment.API_URL + 'auth/logout')
.pipe(
tap(data => {
return this.storage.remove(TOKEN_KEY).then(() => {
this.authenticationState.next(false);
});
})
)
}
isAuthenticated() {
return this.authenticationState.value;
}
checkToken() {
this.storage.getItem(TOKEN_KEY).then(res => {
if (res) {
this.authenticationState.next(true);
}
});
}
}
When I try to login the first time, it returns the "token not found" error by NativeStorage from the interceptor
NativeStorageError {code: 2, source: "Native", exception: null}
you try to access to 'TOKEN_KEY' item when item doesn't exist.
intercept(request: HttpRequest<any>, next: HttpHandler): Observable<HttpEvent<any>> {
return from(this.storage.getItem(TOKEN_KEY)) <-- //This causes error
or
checkToken() {
this.storage.getItem(TOKEN_KEY).then(res => { <-- //This causes error
if (res) {
this.authenticationState.next(true);
}
});
}
you must initialize default value for 'TOKEN_KEY' or add if else condition for controlling(checking) token
you can use this.storage.keys list for find your key
other error codes:
NATIVE_WRITE_FAILED = 1
ITEM_NOT_FOUND = 2
NULL_REFERENCE = 3
UNDEFINED_TYPE = 4
JSON_ERROR = 5
WRONG_PARAMETER = 6
the get function from ionic storage return the value as object { value : "token value "}
so access value property from storage result like this
request = request.clone({ headers: request.headers.set('Authorization', 'Bearer ' +
token.value) });
I have a route guard like below
#Injectable()
export class AuthGuard implements CanActivate {
constructor(private router: Router, private authenticationSvc: AuthenticationService) { }
canActivate(): Observable<boolean> {
return this.authenticationSvc.getAuthenticatedUser().map(
r => {
if (this.authenticationSvc.isAuthenticated()) {
// logged in so return true
return true;
}
this.router.navigateByUrl('/login');
return false;
})
}
The issue is that sometimes getAuthenticatedUser returns a 401, and I have an http-interceptor that handles the 401 and redirect to the login page. The issue is that this .map never resolves because the http request throws an error, and the angular router gets stuck on this first routing request and can't handle the subsequent request from the interceptor. How can I handle this error and have the Observable returned resolve to false and keep things moving?
getAuthenticatedUser() {
let getUserObservable = this.http.get(ApiUrl + 'security/getAuthenticatedUser')
.map((res: any) => res.json())
.share()
//Get the result for the cache
getUserObservable.subscribe(
r => {
if (r.success) {
this.authenticatedUser = r.result.user;
}
});
//return the observable
return getUserObservable;
}
and http-intercepter below
export class HttpInterceptor extends Http {
authSvc: AuthenticationService;
lastClicked: any = 0;
constructor(backend: ConnectionBackend, defaultOptions: RequestOptions, private _router: Router, private injector: Injector) {
super(backend, defaultOptions);
}
request(url: string | Request, options?: RequestOptionsArgs): Observable<Response> {
return this.intercept(super.request(url, options));
}
get(url: string, options?: RequestOptionsArgs): Observable<Response> {
return this.intercept(super.get(url, options));
}
post(url: string, body: string, options?: RequestOptionsArgs): Observable<Response> {
return this.intercept(super.post(url, body, this.getRequestOptionArgs(options)));
}
put(url: string, body: string, options?: RequestOptionsArgs): Observable<Response> {
return this.intercept(super.put(url, body, this.getRequestOptionArgs(options)));
}
delete(url: string, options?: RequestOptionsArgs): Observable<Response> {
return this.intercept(super.delete(url, options));
}
getRequestOptionArgs(options?: RequestOptionsArgs): RequestOptionsArgs {
if (options == null) {
options = new RequestOptions();
}
if (options.headers == null) {
options.headers = new Headers();
}
options.headers.append('Content-Type', 'application/json');
return options;
}
intercept(observable: Observable<Response>): Observable<Response> {
return observable.catch((err, source) => {
//If we get a 401 from the api that means out FormsAuthenticationTicket has expired, clear the auth cookie and navigate back to terms page
if (err.status == 401) {
this._router.navigateByUrl('/login');
}
return Observable.throw(err);
});
}
You can catch errors and return Observable<bool> as follows:
#Injectable()
export class AuthGuard implements CanActivate {
constructor(private router: Router, private authenticationSvc: AuthenticationService) { }
canActivate(): Observable<boolean> {
return this.authenticationSvc.getAuthenticatedUser().map(
r => {
if (this.authenticationSvc.isAuthenticated()) {
// logged in so return true
return true;
}
this.router.navigateByUrl('/login');
return false;
})
.catch((error: any) => {
this.router.navigateByUrl('/login');
return Observable.of(false);
});
}