How to get header Authorization

Question

I don't know why i can't get value from header AUTHORIZATION as i see in Postman (return from server).

http://img110.xooimage.com/files/1/6/9/postman-567005e.png

I tried many things but i don't know why i still get a null value.

http://img110.xooimage.com/files/b/c/f/debug-5670075.png

Here is my code:

authentification-service.ts

login(u: User): Observable<HttpResponse<Response>> {

if ((u.username && u.password)) {
  this.user.setUsername(u.username);
  this.user.setPassword(u.password);
  // @ts-ignore
  const request = this.http.post<Response>(this.authUrl, this.user, {observe: 'response'}  )
    .pipe(
      tap((data: any) => {
        // @ts-ignore
        this.log(`Succès ${data.status} authentification succès`, 'success');
        this.navigateToCollection();
        console.log('data');
        console.log(data);
        console.log('data.headers.get(Authorization)');
        console.log(data.headers.get('Authorization'));
        return localStorage.setItem(TOKEN_KEY, data.headers.get('Authorization'));
      }),
      catchError(this.handleError<any>('login',
        console.log('je passe ici3')))
    );
  request.subscribe(value => {
     // console.log(value.headers.get('Authorization'));
     console.log(localStorage.getItem(TOKEN_KEY));
  });
  this.presentLoading(request);

  console.log('je passe ici4');
  return request;
} else {
  this.log('Renseignez les champs', 'error');
  alert('Erreur de login ou de mot de passe');
}

}

My token is send by my service authentification (spring boot) if you need more informations ask me.

I would like to know how to get this header value.

thank you for your time.

`data` and `headers` are available in two different objects. — fiveelements, Aug 05 '19 at 12:27
"Authorization header is not standard in the response, so the server has to explicitly inform to expose it. To do that the server must add the following header: Access-Control-Expose-Headers: authorization" Source: https://stackoverflow.com/questions/44032464/read-authorization-header-from-response — Flo, Aug 05 '19 at 12:28
Or may be you have to do this at server side: `response.addHeader("access-control-expose-headers", "Authorization");` — fiveelements, Aug 05 '19 at 12:29
Are you making a request to a different domain? If yes then it is a CORS request and you have to add the above-mentioned header in the response. — fiveelements, Aug 05 '19 at 12:32
By the way, no real importance but `console.log` can take two parameters. First is a string free text, second the value you want to show. For example `console.log('data',data)`. So you can avoid to put 2 `console.log` (or maybe it's itended for visibility pupose) — Flo, Aug 05 '19 at 12:32
i have a CORS filter in my gateway (Zuul) who already contains those parameters ? I made a mistake? https://ibb.co/zHVSZkc — Thibaut Chazalon, Aug 05 '19 at 13:24

Shweta Valunj · Answer 1 · 2019-08-05T12:41:01.767

3

You will have to expose the header from your backend(server) or pass it in the response body.

Access-Control-Expose-Headers:headerName; Add the following code in your springBoot application:

response.setHeader("Access-Control-Expose-Headers", "Authorization");

Otherwise you will get it as null, but you will be able to see it in POSTMAN.

edited Aug 05 '19 at 12:41

answered Aug 05 '19 at 12:36

Shweta Valunj

148
1
11

How this answer is different from the solutions mentioned in the comments? – fiveelements Aug 05 '19 at 12:37
Hi , I was editing the answer. Didnt see you had already added a comment. :) – Shweta Valunj Aug 05 '19 at 12:42
In your controller class before returning the response add the above line. – Shweta Valunj Aug 05 '19 at 13:18
Or by using ResponseEntity. You can refer to this link https://www.techiedelight.com/add-header-to-response-spring-boot/ – Shweta Valunj Aug 05 '19 at 13:20
i have a CORS filter in my gateway (Zuul) who already contains those parameters ? I made a mistake? https://ibb.co/zHVSZkc – Thibaut Chazalon Aug 05 '19 at 13:24
Authorization is a response header right? In postpan you can see it in response headers tab? – Shweta Valunj Aug 05 '19 at 13:49
Can you see Access-Control-Expose-Headers →Authorization in POSTMAN responseHeader? If no then the headers are not applied from the code correctly – Shweta Valunj Aug 05 '19 at 13:51
1

solved, i changed my CORS filter by a modern method founded here :https://stackoverflow.com/questions/36809528/spring-boot-cors-filter-cors-preflight-channel-did-not-succeed it's now working – Thibaut Chazalon Aug 05 '19 at 13:51
In the snapshot you provided Access-Control-Expose-Headers →Authorization should also be populated in response. – Shweta Valunj Aug 05 '19 at 13:53

score 0 · Answer 2 · answered Aug 05 '19 at 14:43

I Resolve my problem, i'm using gateway but you can put this below your method "configure"

 @Bean
CorsConfigurationSource corsConfigurationSource() {
    CorsConfiguration configuration = new CorsConfiguration();
    configuration.setAllowedOrigins(Arrays.asList("*"));
    configuration.setAllowedMethods(Arrays.asList("GET","POST", "PUT", "DELETE", "OPTIONS"));
    configuration.setAllowedHeaders(Arrays.asList("authorization",  "content-type"));
    configuration.setExposedHeaders(Arrays.asList("authorization"));
    UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
    source.registerCorsConfiguration("/**", configuration);
    return source;
}

How to get header Authorization

2 Answers2