|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(Java) ING Open Banking OAuth2 Client CredentialsDemonstrates how to get an access token for the ING Open Banking APIs using client credentials. For more information, see https://developer.ing.com/openbanking/get-started/openbanking
import com.chilkatsoft.*; public class ChilkatExample { static { try { System.loadLibrary("chilkat"); } catch (UnsatisfiedLinkError e) { System.err.println("Native code library failed to load.\n" + e); System.exit(1); } } public static void main(String argv[]) { // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. CkCert cert = new CkCert(); boolean success = cert.LoadFromFile("qa_data/certs_and_keys/ING/example_client_tls.cer"); if (success == false) { System.out.println(cert.lastErrorText()); return; } CkBinData bdPrivKey = new CkBinData(); success = bdPrivKey.LoadFile("qa_data/certs_and_keys/ING/example_client_tls.key"); if (success == false) { System.out.println("Failed to load example_client_tls.key"); return; } // The OAuth 2.0 client_id for these certificates is e77d776b-90af-4684-bebc-521e5b2614dd. // Please note down this client_id since you will need it in the next steps to call the API. CkPrivateKey privKey = new CkPrivateKey(); success = privKey.LoadAnyFormat(bdPrivKey,""); if (success == false) { System.out.println(privKey.lastErrorText()); return; } // Associate the private key with the certificate. success = cert.SetPrivateKey(privKey); if (success == false) { System.out.println(cert.lastErrorText()); return; } CkHttp http = new CkHttp(); success = http.SetSslClientCert(cert); if (success == false) { System.out.println(http.lastErrorText()); return; } // Calculate the Digest and add the "Digest" header. Do the equivalent of this: // payload="grant_type=client_credentials" // payloadDigest=`echo -n "$payload" | openssl dgst -binary -sha256 | openssl base64` // digest=SHA-256=$payloadDigest CkCrypt2 crypt = new CkCrypt2(); crypt.put_HashAlgorithm("SHA256"); crypt.put_EncodingMode("base64"); String payload = "grant_type=client_credentials"; String payloadDigest = crypt.hashStringENC(payload); // Calculate the current date/time and add the Date header. // reqDate=$(LC_TIME=en_US.UTF-8 date -u "+%a, %d %b %Y %H:%M:%S GMT") CkDateTime dt = new CkDateTime(); dt.SetFromCurrentSystemTime(); // The desire date/time format is the "RFC822" format. http.SetRequestHeader("Date",dt.getAsRfc822(false)); // Calculate signature for signing your request // Duplicate the following code: // httpMethod="post" // reqPath="/oauth2/token" // signingString="(request-target): $httpMethod $reqPath // date: $reqDate // digest: $digest" // signature=`printf "$signingString" | openssl dgst -sha256 -sign "${certPath}example_client_signing.key" -passin "pass:changeit" | openssl base64 -A` String httpMethod = "POST"; String reqPath = "/oauth2/token"; CkStringBuilder sbStringToSign = new CkStringBuilder(); sbStringToSign.Append("(request-target): "); sbStringToSign.Append(httpMethod); sbStringToSign.ToLowercase(); sbStringToSign.Append(" "); sbStringToSign.AppendLine(reqPath,false); sbStringToSign.Append("date: "); sbStringToSign.AppendLine(dt.getAsRfc822(false),false); sbStringToSign.Append("digest: SHA-256="); sbStringToSign.Append(payloadDigest); CkPrivateKey signingPrivKey = new CkPrivateKey(); success = signingPrivKey.LoadPemFile("qa_data/certs_and_keys/ING/example_client_signing.key"); if (success == false) { System.out.println(signingPrivKey.lastErrorText()); return; } CkRsa rsa = new CkRsa(); success = rsa.ImportPrivateKeyObj(signingPrivKey); if (success == false) { System.out.println(rsa.lastErrorText()); return; } rsa.put_EncodingMode("base64"); String b64Signature = rsa.signStringENC(sbStringToSign.getAsString(),"SHA256"); CkStringBuilder sbAuthHdrVal = new CkStringBuilder(); sbAuthHdrVal.Append("Signature keyId=\"e77d776b-90af-4684-bebc-521e5b2614dd\","); sbAuthHdrVal.Append("algorithm=\"rsa-sha256\","); sbAuthHdrVal.Append("headers=\"(request-target) date digest\","); sbAuthHdrVal.Append("signature=\""); sbAuthHdrVal.Append(b64Signature); sbAuthHdrVal.Append("\""); CkStringBuilder sbDigestHdrVal = new CkStringBuilder(); sbDigestHdrVal.Append("SHA-256="); sbDigestHdrVal.Append(payloadDigest); // Do the following CURL statement: // curl -i -X POST "${httpHost}${reqPath}" \ // -H 'Accept: application/json' \ // -H 'Content-Type: application/x-www-form-urlencoded' \ // -H "Digest: ${digest}" \ // -H "Date: ${reqDate}" \ // -H "authorization: Signature keyId=\"$keyId\",algorithm=\"rsa-sha256\",headers=\"(request-target) date digest\",signature=\"$signature\"" \ // -d "${payload}" \ // --cert "${certPath}tlsCert.crt" \ // --key "${certPath}tlsCert.key" CkHttpRequest req = new CkHttpRequest(); req.AddParam("grant_type","client_credentials"); req.AddHeader("Accept","application/json"); req.AddHeader("Date",dt.getAsRfc822(false)); req.AddHeader("Digest",sbDigestHdrVal.getAsString()); req.AddHeader("Authorization",sbAuthHdrVal.getAsString()); CkHttpResponse resp = http.PostUrlEncoded("https://api.sandbox.ing.com/oauth2/token",req); if (http.get_LastMethodSuccess() == false) { System.out.println(http.lastErrorText()); return; } // If successful, the status code = 200 System.out.println("Response Status Code: " + resp.get_StatusCode()); System.out.println(resp.bodyStr()); CkJsonObject json = new CkJsonObject(); json.Load(resp.bodyStr()); json.put_EmitCompact(false); System.out.println(json.emit()); // A successful response contains an access token such as: // { // "access_token": "eyJhbGc ... bxI_SoPOBH9xmoM", // "expires_in": 905, // "scope": "payment-requests:view payment-requests:create payment-requests:close greetings:view virtual-ledger-accounts:fund-reservation:create virtual-ledger-accounts:fund-reservation:delete virtual-ledger-accounts:balance:view", // "token_type": "Bearer", // "keys": [ // { // "kty": "RSA", // "n": "3l3rdz4...04VPkdV", // "e": "AQAB", // "use": "sig", // "alg": "RS256", // "x5t": "3c396700fc8cd709cf9cb5452a22bcde76985851" // } // ], // "client_id": "e77d776b-90af-4684-bebc-521e5b2614dd" // } // Use this online tool to generate parsing code from sample JSON: // Generate Parsing Code from JSON String kty; String n; String e; String use; String alg; String x5t; String access_token = json.stringOf("access_token"); int expires_in = json.IntOf("expires_in"); String scope = json.stringOf("scope"); String token_type = json.stringOf("token_type"); String client_id = json.stringOf("client_id"); int i = 0; int count_i = json.SizeOfArray("keys"); while (i < count_i) { json.put_I(i); kty = json.stringOf("keys[i].kty"); n = json.stringOf("keys[i].n"); e = json.stringOf("keys[i].e"); use = json.stringOf("keys[i].use"); alg = json.stringOf("keys[i].alg"); x5t = json.stringOf("keys[i].x5t"); i = i+1; } // This example will save the JSON containing the access key to a file so that // a subsequent example can load it and then use the access key for a request, such as to create a payment request. json.WriteFile("qa_data/tokens/ing_access_token.json"); } } |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.