mpu 401

packet to the client to clear all unrecognized input buffers for that client so that the data is not read by the application on the server and interferes with the latter. 400 Bad Request 1, the semantic error, the current request can not be understood by the server. Unless modified, the client should not submit the request repeatedly. 2, the request parameter is wrong. 401 Unauthorized The current req

confirms it, because the requested condition may vary.1, the semantic error, the current request can not be understood by the server. 　　Unless modified, the client should not submit the request repeatedly. 2, the request parameter is wrong.401 The current request requires user authentication. The response must contain a Www-authenticate information header for the requested resource to ask for user information. The client can repeatedly submit a requ

the error message before shutting down the connection between the client and the server. If the client continues to send data to the server after receiving the error message, the server's TCP stack sends a reset packet to the client to clear all unrecognized input buffers for that client so that the data is not read by the application on the server and interferes with the latter.RequestThe current request cannot be understood by the server because it contains a syntax error. Unless modified, th

Request1, the semantic error, the current request can not be understood by the server. Unless modified, the client should not submit the request repeatedly.2, the request parameter is wrong.401 UnauthorizedThe current request requires user authentication. The response must contain a Www-authenticate information header for the requested resource to ask for user information. The client can repeatedly submit a request that contains the appropriate Author

current request can not be understood by the server. 　　Unless modified, the client should not submit the request repeatedly. 2, the request parameter is wrong.401 The current request requires user authentication. The response must contain a Www-authenticate information header for the requested resource to ask for user information. The client can repeatedly submit a request that contains the appropriate Authorization header information. If the current

status codes apply to any request method. The browser should display to the user any entity content contained in such an error response.If the client is transmitting data when an error occurs, the server implementation using TCP should carefully ensure that the client has received a packet containing the error message before shutting down the connection between the client and the server. If the client continues to send data to the server after receiving the error message, the server's TCP stack

accesses a URL that it does not have permission to access, jumps to the page of an error prompt)3. HTTP request processing (when we send a data request, if the returned status is 401 or 401, then the page is usually redirected to an error prompt)How is it implemented?First you need to get all the permissions of the current user before the angular is started, and then the elegant way is to store this mappin

the error message before shutting down the connection between the client and the server. If the client continues to send data to the server after receiving the error message, the server's TCP stack sends a reset packet to the client to clear all unrecognized input buffers for that client so that the data is not read by the application on the server and interferes with the latter.RequestThe current request cannot be understood by the server because it contains a syntax error. Unless modified, th

in the HTTP Authorization head; If the token information is found, the token information is decrypted and decoded by calling JWT Lib according to the signature encryption key in the configuration File. After completing the decoding and verifying the signature, the exp, nbf, AUD and other information in token are Verified. After all, according to the access information of the User's role, the logical judgment of the permission of the requested resource; If the permission logic is

=" border:none;margin-top:20px;margin-bottom:20px; "/>650) this.width=650; "Src=" http://images2015.cnblogs.com/blog/740839/201612/740839-20161215211626698-971493866. JPG "style=" border:none;margin-top:20px;margin-bottom:20px; "/>For an example of basic authentication, as shown in650) this.width=650; "Src=" http://images2015.cnblogs.com/blog/740839/201612/740839-20161215211713276-974407358. JPG "style=" border:none;margin-top:20px;margin-bottom:20px; "/>When the server challenges the user, it r

this is a head request, the response entity should contain a hyperlink to the new URI and a short description. 　　Because some browsers do not recognize the 307 response, you need to add the necessary information above so that users can understand and make access requests to the new URI. If this is not a GET or HEAD request, then the browser disables automatic redirection unless the user confirms it, because the requested condition may vary. 400 1, the semantic error, the curr

a hyperlink to the new URI and a short description. 　　Because some browsers do not recognize the 307 response, you need to add the necessary information above so that users can understand and make access requests to the new URI. If this is not a GET or HEAD request, then the browser disables automatic redirection unless the user confirms it, because the requested condition may vary. 400 1, the semantic error, the current request can not be understood by the server. 　　Unless m

. Unless the response is aHEAD request, or the server should return an entity that interprets the current error condition, and whether this is a temporary or permanent condition. These status codes apply to any request method. The browser should display to the user any entity content contained in such an error response. If the client is transmitting data when an error occurs, the server implementation using TCP should carefully ensure that the client has received a packet containing the error me

error message before shutting down the connection between the client and the server. If the client continues to send data to the server after receiving the error message, the server's TCP stack sends a reset packet to the client to clear all unrecognized input buffers for that client so that the data is not read by the application on the server and interferes with the latter.Request1, the semantic error, the current request can not be understood by the server. Unless modified, the client should

")// 拥有 user 或 admin 角色可以访问@RequiresRoles(logical = Logical.OR, value = {"user", "admin"})// 拥有 vip 和 normal 权限可以访问@RequiresPermissions(logical = Logical.AND, value = {"vip", "normal"})// 拥有 user 或 admin 角色，且拥有 vip 权限可以访问@GetMapping("/getVipMessage")@RequiresRoles(logical = Logical.OR, value = {"user", "admin"})@RequiresPermissions("vip")public ResultMap getVipMessage() { return resultMap.success().code(200).message("成功获得 vip 信息！");}When we write the interface has the above annotations, if th

token information in the cookie, and if not found, finds it in the HTTP Authorization head; If the token information is found, the token information is decrypted and decoded by calling JWT Lib according to the signature encryption key in the configuration file. After completing the decoding and verifying the signature, the EXP, NBF, AUD and other information in token are verified. After all, according to the access information of the user's role, the logical judgment of the permissi

page content is not returned.305 (using a proxy) the requestor can only use the proxy to access the requested Web page. If the server returns this response, it also indicates that the requestor should use the proxy.307 (Temporary redirect) The server is currently responding to requests from a Web page in a different location, but the requestor should continue to use the original location for future requests.4** Start (Request error) These status codes indicate that the request may be faulty and

requested resource is now temporarily responding to requests from different URIs. Because such redirects are temporary, the client should continue to send subsequent requests to the original address. 　　This response is cacheable only if specified in Cache-control or expires. The new temporary URI should be returned in the location domain of the response. Unless this is a head request, the response entity should contain a hyperlink to the new URI and a short description. 　　Because some browsers

URL that it does not have permission to access) 3. HTTP request processing (when we send a data request, if the status returned is 401 or 403, it is usually redirected to a page that is incorrectly prompted) Implementation of Access Identity controlfirst you need to get all the permissions of the current user before angular starts, and then the more elegant way is to store the mapping relationship through a service. Whether the UI handles conten

An alternative method of Basic authentication proposed by Certified Digest authentication ←http1.1 Server-side to nonce for questioning, the client to the user name, password, nonce,http method, the request URI, such as the basis of information generated by the response information to authenticate the way. ※ Clear Text delivery without a password Summary Authentication steps: 1. Clients access a resource that is protected by HTTP Digest authentication. 2. The server returns