Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
V
V
Vladimir2022-04-08 07:41:12
JSON Web Token
Vladimir, 2022-04-08 07:41:12

How to send cookies with fetch and fix 404 post error?

Hello. I'm trying to send a post to a server that uses a jwt token for authorization, but I get a post 404.
Here is the logic for setting the token and the user:

app.use((req, res, next)=>{
  const jwtToken = req.cookies.JWT_TOKEN;

  if(!jwtToken) {
    next();
    return;
  }

  jwt.verify(jwtToken, SECRET, (err, decoded)=>{
    if(err) {
      next(err);
      return;
    }
    const sessionData = decoded.data;
    let userId;

    if (sessionData['modx.user.contextTokens']) {
      if (sessionData['modx.user.contextTokens']['web'] > 0) {
        userId = sessionData['modx.user.contextTokens']['web'];
      }else if($dataarr['modx.user.contextTokens']['mgr'] > 0) {
        userId = sessionData['modx.user.contextTokens']['mgr'];
      }else {
        return res.redirect('/signin');
      }
    }

    req.user = {userId};
    next();
  });
});

app.use((req, res, next)=>{
  if (!req.user || !req.user.userId) {
    next(new Error('Access Denied'));
  }else {
    next();
  }
});


Here is the get request that was already here and it works:

app.get("/:id?", function(req, res){
  const room = {id:parseInt(req.params.id||0)};
  const userid = req.user.userId;

  console.log('USEEEEEEEEEEEEEEEEEEEEEEEEEER ID', userid);

  pool.query("SELECT * FROM modx_user_attributes WHERE id = ?", [userid], function(err, [userData]) {
    if(err) return console.log(err);
    //console.log('userData ', userData);

    const token = jwt.sign({
      data: {userId: userid},
    }, SECRET);

    res.render("index.hbs", {
        appdata: {token, room, user: userData},
        finalScripts,
    });
  });
});


And here is my point, but I can't reach it:
app.post('/writeVideo', (req, res) => {
    req.video.mv('test.wav', (err) => {
      if (err) {
        res.send(err);
      } else {
        res.send({
          success: 'file write'
        })
      }
    });
})


And here I am trying to knock on the point:

fetch('/writeVideo', {
            method: 'POST',
            credentials: "same-origin",
            headers: {
              'Content-type': 'application/json',
            },
            body: {
              user: {
                userId: 8
              },
              video: audioBlob
            }
          }).then(data => data.json()).then(data => console.log(data));


I read a little, they advise just using credentials: 'same-origin' || 'include', however it didn't work for me, I tried setting Cookie headers: 'JWT_TOKEN=token' in different ways - didn't work. Please tell me how should I proceed.

Thank you.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
Anton Goretsky, 2022-04-08
@rqdkmndh

If you analyze how this ingenious design works for you:
if (!req.user || !req.user.userId) {
then perhaps you will get an answer to your question

Similar questions
B
Boogie19892016-09-03 23:57:59
How to properly organize web service authorization on Express? 3Reply
S
Sport-code2019-03-16 09:46:41
How to determine the lifetime of a JWT token on the client? 5Reply
I
iliyaisd2019-04-01 17:27:36
Java + Spring: which authentication API way to use? 2Reply
I
Islam Dortkuliev2019-05-01 10:46:13
ASP.NET Core. JWT. How to revoke a token? 1Reply
J
jtag2019-06-16 15:56:15
What is the correct way to follow a secure link using Json Web Token? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question