Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(Delphi DLL) Xero 2 Legged OAuth for Private ApplicationThis example demonstrates the REST object for 2-legged OAuth for a private application. Note: This example requires Chilkat v9.5.0.64 or later. An application can setup OAuth1 for a given instance of the Chilkat REST object, and then use the instance for many REST API calls. This example demonstrates the OAuth1 setup and initial connection. This code would typically be placed in a subroutine/function to "initalize" the REST object before beginning to use it for REST HTTP requests. Note: Xero private applications use 2 legged OAuth and bypass the user authorization workflow in the standard OAuth process. Private applications are linked to a single Xero organisation which is chosen when you register your application. In summary: 2-legged OAuth1 is for applications that access the data that they themselves own.
uses Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics, Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Pfx, OAuth1, Rest, PrivateKey; ... procedure TForm1.Button1Click(Sender: TObject); var rest: HCkRest; consumerKey: PWideChar; consumerSecret: PWideChar; pfx: HCkPfx; success: Boolean; privKeyFromPfx: HCkPrivateKey; privKeyFromPem: HCkPrivateKey; oauth1: HCkOAuth1; bAutoReconnect: Boolean; begin // This example requires Chilkat v9.5.0.64 or later // This sample code would typically be placed in a subroutine or function // where the rest object is passed by reference. // It does the OAuth1 setup and makes the initial connection. rest := CkRest_Create(); consumerKey := 'XERO_PRIVATE_APP_KEY'; consumerSecret := 'XERO_PRIVATE_APP_SECRET'; // Let's get our private key from our PFX (password protected), or the PEM (unprotected). // You can decide which to use. Either is OK, although I would recommend keeping your // private keys in a PFX and not in an unprotected PEM. pfx := CkPfx_Create(); success := CkPfx_LoadPfxFile(pfx,'qa_data/certs/xero_private_app/public_privatekey.pfx','PFX_PASSWORD'); if (success <> True) then begin Memo1.Lines.Add(CkPfx__lastErrorText(pfx)); Exit; end; privKeyFromPfx := CkPfx_GetPrivateKey(pfx,0); if (CkPfx_getLastMethodSuccess(pfx) <> True) then begin Memo1.Lines.Add(CkPfx__lastErrorText(pfx)); Exit; end; // Or we can load from a PEM.. privKeyFromPem := CkPrivateKey_Create(); success := CkPrivateKey_LoadPemFile(privKeyFromPem,'qa_data/certs/xero_private_app/privatekey.pem'); if (success <> True) then begin Memo1.Lines.Add(CkPrivateKey__lastErrorText(privKeyFromPem)); Exit; end; // Note: There are many other means for loading a private key, including // from other formats and directly from memory (i.e. not file-based). oauth1 := CkOAuth1_Create(); CkOAuth1_putConsumerKey(oauth1,consumerKey); CkOAuth1_putConsumerSecret(oauth1,consumerSecret); CkOAuth1_putToken(oauth1,consumerKey); CkOAuth1_putTokenSecret(oauth1,consumerSecret); CkOAuth1_putSignatureMethod(oauth1,'RSA-SHA1'); CkOAuth1_SetRsaKey(oauth1,privKeyFromPfx); CkPrivateKey_Dispose(privKeyFromPfx); // Make the initial connection. // A single REST object, once connected, can be used for many Xero REST API calls. // The auto-reconnect indicates that if the already-established HTTPS connection is closed, // then it will be automatically re-established as needed. bAutoReconnect := True; success := CkRest_Connect(rest,'api.xero.com',443,True,bAutoReconnect); if (success <> True) then begin Memo1.Lines.Add(CkRest__lastErrorText(rest)); Exit; end; // Finally, install the OAuth1 authenticator. // (It make no difference whether this happens before or after the // connection is established.) CkRest_SetAuthOAuth1(rest,oauth1,False); Memo1.Lines.Add('OK, the Xero OAuth1 is initialized and the REST object is ready to make REST API calls..'); CkRest_Dispose(rest); CkPfx_Dispose(pfx); CkPrivateKey_Dispose(privKeyFromPem); CkOAuth1_Dispose(oauth1); end; |
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.