13

I am trying to put an authorization header in my requests but it doesn't work.

I am using this:

var config = {headers: {
  'Authorization': token
  }
};
return $http.get('http://localhost:3000/apis/users/all', config);

And also I tried this:

$http.defaults.headers.common['Authorization'] = token;

But with both cases I got this headers in the back-end request:

Accept:*/*
Accept-Encoding:gzip, deflate, sdch
Accept-Language:es-ES,es;q=0.8,ca;q=0.6,en;q=0.4,gl;q=0.2
Access-Control-Request-Headers:accept, authorization
Access-Control-Request-Method:GET
Connection:keep-alive
Host:localhost:3000
Origin:http://localhost:8000
Referer:http://localhost:8000/
User-Agent:Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_4)         AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.85 Safari/537.36

I need something like this:

Authorization: token

But I got this:

Access-Control-Request-Headers:accept, authorization

Then, I don't have in any place the token value.

I am using expressjs for the back-end and I using this for CORS:

app.use(function(req, res, next) {
    res.header('Access-Control-Allow-Origin', '*');
    res.header('Access-Control-Allow-Headers', 'Origin, X-Requested-With, Content-Type, Accept, Authorization');
    next();
  });

Also say that testing with the chrome extension Advance Rest Client it is working fine. In the request header there is a Authorization: valueOfToken..

Thanks a lot.

Improve this question
1
  • Did u ever get an answer to this ? Commented Dec 25, 2015 at 14:51

3 Answers 3

Reset to default
22

Authorization can't be plain.

specify weather its a Basic or Bearer Authorization

Something like 

$http.defaults.headers.common['Authorization'] = 'Basic ' + token;

or 

$http.defaults.headers.common['Authorization'] = 'Bearer ' + token;
Improve this answer
Sign up to request clarification or add additional context in comments.

1 Comment

Fwiw, 'Bearer' didn't work for me in my server setup. I had to use 'Token' before the token's value. But the gist of the answer was right on.
6

I was having this same issue and it turned out the issue had to do with Apache configuration on the server side. One thing I did find that might be useful to you here is that my Authorization token is sent in the preflight request headers rather than the main request, so it might not appear to be in the headers of the request when you look at it in the developer tools.

I'm setting my defaults like this:

app.config(function($httpProvider) {
    $httpProvider.defaults.common['Authorization'] = token;
    // For angular 1.5, use:  
    // $httpProvider.defaults.headers.common['Authorization'] = token;        
});
Improve this answer

2 Comments

You should use the $httpProvider provider in a config block not the $http instance.
On angular 1.5 you should use $httpProvider.defaults.headers.common.Authorization
3

Try this:

$http({

url : "127.0.0.1/login",
method : 'GET',
headers : {
      Content-Type : 'application/json',    
      Authorization: token
      }
}).success(function(data){
    alert("login Successfully");
}).error(function(error){
    alert("login error");
})
Improve this answer

1 Comment

the key should be headers here, not header

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.