Sample code for 30+ languages & platforms
AutoIt

ZATCA Onboarding Get Compliance CSID

See more ZATCA Examples

Demonstrates sending a POST to get a compliance CSID, which is two parts: A binary security token, and a secret.

Chilkat AutoIt Downloads

AutoIt
Local $bSuccess = False

; This example requires the Chilkat API to have been previously unlocked.
; See Global Unlock Sample for sample code.

; It is assumed you've already generated a CSR.
; Also, you'll need an OTP code, valid for 1 hour, which is generated online in the Fatoora portal.  See 
; https://zatca.gov.sa/ar/E-Invoicing/Introduction/Guidelines/Documents/E-invoicing%20Detailed%20Technical%20Guidelines.pdf

; Manually replace this with the OTP code you interactively obtained in a browser session from the Fatoora portal.
; The OTP code is valid for 1 hour.
Local $sOtp = "123434"

; You should already have a CSR in a file containing something that looks like this:

; -----BEGIN CERTIFICATE REQUEST-----
; MIIB5DCCAYsCAQAwTDELMAkGA1UEBhMCU0ExFTATBgNVBAsMDFJpeWFkIEJyYW5j
; aDEQMA4GA1UECgwHQ29udG9zbzEUMBIGA1UEAwwLRUExMjM0NTY3ODkwVjAQBgcq
; hkjOPQIBBgUrgQQACgNCAAQI6op+6GQ4Gmn9oy0DpGxX0lFtUIvj+4Jtnp0VyEsH
; +ZO7lpgksbRC484R3fAsO0v+Ly24ZIUIOYEIAeJ1f6AooIHfMIHcBgkqhkiG9w0B
; CQ4xgc4wgcswIQYJKwYBBAGCNxQCBBQTElpBVENBLUNvZGUtU2lnbmluZzCBpQYD
; VR0RBIGdMIGapIGXMIGUMTswOQYDVQQEDDIxLVRTVHwyLVRTVHwzLWVkMjJmMWQ4
; LWU2YTItMTExOC05YjU4LWQ5YThmMTFlNDQ1ZjEfMB0GCgmSJomT8ixkAQEMDzMx
; MDEyMjM5MzUwMDAwMzENMAsGA1UEDAwEMTEwMDESMBAGA1UEGgwJTXlBZGRyZXNz
; MREwDwYDVQQPDAhJbmR1c3RyeTAKBggqhkjOPQQDAgNHADBEAiBurm6KdAeHfXzt
; h/jk8xSMBP4TAkkFrg+hWDhfI0/SuAIgJi8ectM7YwBIBCmf0tdFcVTU7GBbvjnK
; xValZCAO39M=
; -----END CERTIFICATE REQUEST-----

$oPem = ObjCreate("Chilkat.Pem")
$bSuccess = $oPem.LoadPemFile("c:/aaworkarea/zatca/onboarding/taxpayer.csr","")
If ($bSuccess = False) Then
    ConsoleWrite($oPem.LastErrorText & @CRLF)
    Exit
EndIf

; Get the base64 from the CSR in a single line.
$oSbCsrBase64 = ObjCreate("Chilkat.StringBuilder")
$oSbCsrBase64.Append($oPem.GetEncodedItem("csr","","base64",0))
Local $iNumReplaced = $oSbCsrBase64.Replace(@CR,"")
$iNumReplaced = $oSbCsrBase64.Replace(@LF,"")
Local $sCsrBase64 = $oSbCsrBase64.GetAsString()
ConsoleWrite($sCsrBase64 & @CRLF)

$oJson = ObjCreate("Chilkat.JsonObject")
$oJson.EmitCompact = False
$oJson.UpdateSb("csr",$oSbCsrBase64)

$oHttp = ObjCreate("Chilkat.Http")
$oHttp.Accept = "application/json"
$oHttp.SetRequestHeader "OTP",$sOtp
$oHttp.SetRequestHeader "Accept-Version","V2"
$oResp = ObjCreate("Chilkat.HttpResponse")
$bSuccess = $oHttp.HttpJson("POST","https://gw-apic-gov.gazt.gov.sa/e-invoicing/core/compliance",$oJson,"application/json",$oResp)
If ($bSuccess = False) Then
    ConsoleWrite($oHttp.LastErrorText & @CRLF)
    Exit
EndIf

If ($oResp.StatusCode <> 200) Then
    ConsoleWrite($oResp.BodyStr & @CRLF)
    ConsoleWrite("response status code = " & $oResp.StatusCode & @CRLF)
    ConsoleWrite("Failed" & @CRLF)
    Exit
EndIf

$oJsonResp = ObjCreate("Chilkat.JsonObject")
$oResp.GetBodyJson($oJsonResp)

$oJsonResp.EmitCompact = False
ConsoleWrite("JSON response:" & @CRLF)
ConsoleWrite($oJsonResp.Emit() & @CRLF)