Sample code for 30+ languages & platforms
Android™

Get Access Token using a Pre-Created JSON Web Token

See more ABN AMRO Examples

Demonstrates how to get an access token using a pre-created JSON Web Token (JWT).

Chilkat Android™ Downloads

Android™
// Important: Don't forget to include the call to System.loadLibrary
// as shown at the bottom of this code sample.
package com.test;

import android.app.Activity;
import com.chilkatsoft.*;

import android.widget.TextView;
import android.os.Bundle;

public class SimpleActivity extends Activity {

  private static final String TAG = "Chilkat";

  // Called when the activity is first created.
  @Override
  public void onCreate(Bundle savedInstanceState) {
    super.onCreate(savedInstanceState);

    boolean success = false;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // We're going to duplicate this CURL statement:
    // curl -X POST https://api-sandbox.abnamro.com/v1/oauth/token \
    // -H "Content-Type: application/x-www-form-urlencoded" \
    // -H "API-Key: xxxxxx" \
    // -d 'client_assertion_type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer&grant_type=client_credentials&client_assertion=eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJ4eHh4eHgiLCJleHAiOiIxNDk5OTQ3NjY4IiwiaXNzIjoibWUiLCJhdWQiOiJodHRwczovL2F1dGgtc2FuZGJveC5hYm5hbXJvLmNvbS9vYXV0aC90b2tlbiJ9.jGwHKG_YjgKpR8NPpaLu6nJ97obeP2vcxg6fOWBKdJ0&scope=tikkie'

    // Load our pre-creaed private key PEM file.
    // Note: Please share your public key along with your app name and developer email id at api.support@nl.abnamro.com. 
    // Token generation will not work unless public key is associated with your app.
    CkPrivateKey privkey = new CkPrivateKey();

    success = privkey.LoadPemFile("qa_data/pem/abnAmroPrivateKey.pem");
    if (success == false) {
        Log.i(TAG, privkey.lastErrorText());
        return;
        }

    // Create the JWT.
    CkJwt jwt = new CkJwt();

    // Create the header:
    // {
    //     "typ": "JWT",
    //     "alg": "RS256"
    // }
    CkJsonObject jsonHeader = new CkJsonObject();
    jsonHeader.UpdateString("typ","JWT");
    jsonHeader.UpdateString("alg","RS256");

    // Create the payload:
    // {
    //     "nbf": 1499947668,
    //     "exp": 1499948668,
    //     "iss": "me",
    //     "sub": "anApiKey",
    //     "aud": "https://auth-sandbox.abnamro.com/oauth/token"
    // }
    CkJsonObject jsonPayload = new CkJsonObject();

    int curDateTime = jwt.GenNumericDate(0);

    // Set the "not process before" timestamp to now.
    success = jsonPayload.AddIntAt(-1,"nbf",curDateTime);

    // Set the timestamp defining an expiration time (end time) for the token
    // to be now + 1 hour (3600 seconds)
    success = jsonPayload.AddIntAt(-1,"exp",curDateTime + 3600);

    jsonPayload.UpdateString("iss","me");
    jsonPayload.UpdateString("sub","anApiKey");
    jsonPayload.UpdateString("aud","https://auth-sandbox.abnamro.com/oauth/token");

    // Produce the smallest possible JWT:
    jwt.put_AutoCompact(true);

    String jwtStr = jwt.createJwtPk(jsonHeader.emit(),jsonPayload.emit(),privkey);
    if (jwt.get_LastMethodSuccess() == false) {
        Log.i(TAG, jwt.lastErrorText());
        return;
        }

    CkHttp http = new CkHttp();

    CkHttpRequest req = new CkHttpRequest();
    req.AddParam("client_assertion_type","urn:ietf:params:oauth:client-assertion-type:jwt-bearer");
    req.AddParam("grant_type","client_credentials");
    req.AddParam("client_assertion",jwtStr);
    req.AddParam("scope","tikkie");

    req.put_HttpVerb("POST");
    req.put_ContentType("application/x-www-form-urlencoded");

    CkHttpResponse resp = new CkHttpResponse();
    success = http.HttpReq("https://api-sandbox.abnamro.com/v1/oauth/token",req,resp);
    if (success == false) {
        Log.i(TAG, http.lastErrorText());
        return;
        }

    if (resp.get_StatusCode() != 200) {
        Log.i(TAG, resp.bodyStr());
        return;
        }

    // Get the JSON result:
    // {
    //     "access_token": "{your access token}",
    //     "expires_in": "{duration of validity in seconds}",
    //     "scope": "{scope(s) for which the access token is valid}",
    //     "token_type": "{it is always Bearer}"
    // }
    CkJsonObject json = new CkJsonObject();
    json.Load(resp.bodyStr());
    Log.i(TAG, "access_token: " + json.stringOf("access_token"));
    Log.i(TAG, "token_type: " + json.stringOf("token_type"));
    Log.i(TAG, "expires_in: " + json.stringOf("expires_in"));
    Log.i(TAG, "scope: " + json.stringOf("scope"));

  }

  static {
      System.loadLibrary("chilkat");

      // Note: If the incorrect library name is passed to System.loadLibrary,
      // then you will see the following error message at application startup:
      //"The application <your-application-name> has stopped unexpectedly. Please try again."
  }
}