(DataFlex) REST Basic Auth with Secure Strings

Demonstrates how to do REST Basic authentication using secure strings.

This example requires Chilkat v9.5.0.71 or greater.

Chilkat ActiveX Downloads ActiveX for 32-bit and 64-bit Windows

Use ChilkatAx-win32.pkg

Procedure Test
    Boolean iSuccess
    Handle hoJson
    Handle hoCrypt
    Variant vSsLogin
    Handle hoSsLogin
    Variant vSsPassword
    Handle hoSsPassword
    Handle hoRest
    Boolean iBTls
    Integer iPort
    Boolean iBAutoReconnect
    String sResponseJson
    String sTemp1
    Boolean bTemp1

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // Imagine we've previously saved our encrypted login and password within a JSON config file
    // that contains this:

    // {
    //   "http_login": "mCrOmA7mBA7Au9RuJGb9hw==",
    //   "http_password": "jJtiI9TgErTTpqBz9JtHBw=="
    // }

    Get Create (RefClass(cComChilkatJsonObject)) To hoJson
    If (Not(IsComObjectCreated(hoJson))) Begin
        Send CreateComObject of hoJson
    End
    Get ComLoadFile Of hoJson "qa_data/passwords/http.json" To iSuccess

    Get Create (RefClass(cComChilkatCrypt2)) To hoCrypt
    If (Not(IsComObjectCreated(hoCrypt))) Begin
        Send CreateComObject of hoCrypt
    End

    // These are the encryption settings we previously used to encrypt the credentials within the JSON config file.
    Set ComCryptAlgorithm Of hoCrypt To "aes"
    Set ComCipherMode Of hoCrypt To "cbc"
    Set ComKeyLength Of hoCrypt To 128
    Send ComSetEncodedKey To hoCrypt "000102030405060708090A0B0C0D0E0F" "hex"
    Send ComSetEncodedIV To hoCrypt "000102030405060708090A0B0C0D0E0F" "hex"
    Set ComEncodingMode Of hoCrypt To "base64"

    Get Create (RefClass(cComChilkatSecureString)) To hoSsLogin
    If (Not(IsComObjectCreated(hoSsLogin))) Begin
        Send CreateComObject of hoSsLogin
    End
    Get Create (RefClass(cComChilkatSecureString)) To hoSsPassword
    If (Not(IsComObjectCreated(hoSsPassword))) Begin
        Send CreateComObject of hoSsPassword
    End

    // Decrypt to the secure string.  (the strings will still held in memory encrypted, but are now encrypted using
    // a randomly generated session key.)
    Get ComStringOf Of hoJson "http_login" To sTemp1
    Get pvComObject of hoSsLogin to vSsLogin
    Get ComDecryptSecureENC Of hoCrypt sTemp1 vSsLogin To iSuccess
    Get ComStringOf Of hoJson "http_password" To sTemp1
    Get pvComObject of hoSsPassword to vSsPassword
    Get ComDecryptSecureENC Of hoCrypt sTemp1 vSsPassword To iSuccess

    Get Create (RefClass(cComChilkatRest)) To hoRest
    If (Not(IsComObjectCreated(hoRest))) Begin
        Send CreateComObject of hoRest
    End

    // Connect to a REST server.
    Move True To iBTls
    Move 443 To iPort
    Move True To iBAutoReconnect
    Get ComConnect Of hoRest "chilkatsoft.com" iPort iBTls iBAutoReconnect To iSuccess

    // Cause the "Authorization: Basic ..." header to be added to HTTP requests
    Get pvComObject of hoSsLogin to vSsLogin
    Get pvComObject of hoSsPassword to vSsPassword
    Get ComSetAuthBasicSecure Of hoRest vSsLogin vSsPassword To iSuccess

    Get ComFullRequestNoBody Of hoRest "GET" "/helloWorld.html" To sResponseJson
    Get ComLastMethodSuccess Of hoRest To bTemp1
    If (bTemp1 <> True) Begin
        Get ComLastErrorText Of hoRest To sTemp1
        Showln sTemp1
        Procedure_Return
    End

    // Show the LastRequestHeader that was sent.
    Get ComLastRequestHeader Of hoRest To sTemp1
    Showln sTemp1

    // The LastRequestHeader looks like this:

    // Host: chilkatsoft.com
    // Authorization: Basic bXlIdHRwTG9naW46bXlIdHRwUGFzc3dvcmQ=


End_Procedure