(MFC) citi Developer OAuth2 Client Credentials Grant

Get access token for your application credentials. You can use this for citi APIs which do not require customer credential verification and consent (e.g. Onboarding).

For more information, see https://sandbox.developerhub.citi.com/api/united-states/retail-bank/identity-security/authorize/documentation

Chilkat C/C++ Library Downloads MS Visual C/C++ Libs

See Also: Using MFC CString in Chilkat

#include <CkHttp.h>
#include <CkHttpRequest.h>
#include <CkHttpResponse.h>
#include <CkStringBuilder.h>
#include <CkJsonObject.h>

void ChilkatSample(void)
    {
    CkString strOut;

    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    CkHttp http;
    bool success;

    // Implements the following CURL command:

    // curl --request POST \
    //   --url https://sandbox.apihub.citi.com/gcb/api/clientCredentials/oauth2/token/us/gcb \
    //   --header 'accept: application/json' \
    //   --user client-id:client-secret \
    //   --header 'content-type: application/x-www-form-urlencoded' \
    //   --data 'grant_type=client_credentials&scope=%2Fapi'

    http.put_Login("client-id");
    http.put_Password("client-secret");

    CkHttpRequest req;
    req.put_HttpVerb("POST");
    req.put_Path("/gcb/api/clientCredentials/oauth2/token/us/gcb");
    req.put_ContentType("application/x-www-form-urlencoded");
    req.AddParam("grant_type","client_credentials");
    req.AddParam("scope","/api");
    req.AddHeader("accept","application/json");

    CkHttpResponse *resp = http.PostUrlEncoded("https://sandbox.apihub.citi.com/gcb/api/clientCredentials/oauth2/token/us/gcb",req);
    if (http.get_LastMethodSuccess() == false) {
        strOut.append(http.lastErrorText());
        strOut.append("\r\n");
        SetDlgItemText(IDC_EDIT1,strOut.getUnicode());
        return;
    }

    CkStringBuilder sbResponseBody;
    resp->GetBodySb(sbResponseBody);
    CkJsonObject jResp;
    jResp.LoadSb(sbResponseBody);
    jResp.put_EmitCompact(false);

    strOut.append("Response Body:");
    strOut.append("\r\n");
    strOut.append(jResp.emit());
    strOut.append("\r\n");

    int respStatusCode = resp->get_StatusCode();
    strOut.append("Response Status Code = ");
    strOut.appendInt(respStatusCode);
    strOut.append("\r\n");
    if (respStatusCode >= 400) {
        strOut.append("Response Header:");
        strOut.append("\r\n");
        strOut.append(resp->header());
        strOut.append("\r\n");
        strOut.append("Failed.");
        strOut.append("\r\n");
        delete resp;
        SetDlgItemText(IDC_EDIT1,strOut.getUnicode());
        return;
    }

    delete resp;

    success = jResp.WriteFile("qa_data/tokens/citi_client_credentials.json");
    if (success == false) {
        strOut.append("Failed to save JSON access token file.");
        strOut.append("\r\n");
        SetDlgItemText(IDC_EDIT1,strOut.getUnicode());
        return;
    }

    //  Sample JSON response:
    //  (Sample code for parsing the JSON response is shown below)

    //  {
    //    "token_type": "bearer",
    //    "access_token": "AAIkMjdh ... 3fsWb7zJ0s",
    //    "expires_in": 1800,
    //    "consented_on": 1584817860,
    //    "scope": "/api"
    //  }

    //  Sample code for parsing the JSON response...
    //  Use the following online tool to generate parsing code from sample JSON:
    //  Generate Parsing Code from JSON

    const char *token_type = jResp.stringOf("token_type");
    const char *access_token = jResp.stringOf("access_token");
    int expires_in = jResp.IntOf("expires_in");
    int consented_on = jResp.IntOf("consented_on");
    const char *scope = jResp.stringOf("scope");


    SetDlgItemText(IDC_EDIT1,strOut.getUnicode());

    }