Chilkat HOME Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi DLL Go Java Node.js Objective-C PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(Visual FoxPro) Salesforce OAuth2 Access TokenSee more OAuth2 ExamplesDemonstrates how to get a Salesforce OAuth2 access token from a desktop application or script.Note: This example requires Chilkat v10.1.2 or later.
LOCAL loOauth2 LOCAL lcUrl LOCAL lnSuccess LOCAL lnNumMsWaited LOCAL loSbJson * To further clarify, see OAuth 2.0 Authorization Flow * For versions of Chilkat < 10.0.0, use CreateObject('Chilkat_9_5_0.OAuth2') loOauth2 = CreateObject('Chilkat.OAuth2') * This should be the port in the localhost callback URL for your connected app. * The callback URL would look like "http://localhost:3017/" if the port number is 3017. loOauth2.ListenPort = 3017 loOauth2.AuthorizationEndpoint = "https://login.salesforce.com/services/oauth2/authorize" loOauth2.TokenEndpoint = "https://login.salesforce.com/services/oauth2/token" * Replace this with your actual client ID (Consumer Key) loOauth2.ClientId = "CLIENT_ID" * We don't have to include the client secret. * See the screenshot of our Connected App below.. * This is for Require Proof Key for Code Exchange (PKCE) * See OAuth2 PKCE Explained loOauth2.CodeChallenge = 1 loOauth2.CodeChallengeMethod = "S256" * To force the OAuth consent screen to reappear (even if previously granted), use: loOauth2.AddAuthQueryParam("prompt","consent") * Begin the OAuth2 authorization flow. This returns a URL that should be loaded in a browser. lcUrl = loOauth2.StartAuth() IF (loOauth2.LastMethodSuccess <> 1) THEN ? loOauth2.LastErrorText RELEASE loOauth2 CANCEL ENDIF * Launch the default browser on the system and navigate to the url. * The LaunchBrowser method was added in Chilkat v10.1.2. lnSuccess = loOauth2.LaunchBrowser(lcUrl) IF (lnSuccess = 0) THEN ? loOauth2.LastErrorText RELEASE loOauth2 CANCEL ENDIF * Wait for the user to approve or deny authorization in the browser. lnNumMsWaited = 0 DO WHILE (lnNumMsWaited < 90000) AND (loOauth2.AuthFlowState < 3) loOauth2.SleepMs(100) lnNumMsWaited = lnNumMsWaited + 100 ENDDO * If the browser does not respond within the specified time, AuthFlowState will be: * * 1: Waiting for Redirect – The OAuth2 background thread is waiting for the browser's redirect request. * 2: Waiting for Final Response – The thread is awaiting the final access token response. * In either case, cancel the background task initiated by StartAuth. IF (loOauth2.AuthFlowState < 3) THEN loOauth2.Cancel() ? "No response from the browser!" RELEASE loOauth2 CANCEL ENDIF * Check AuthFlowState to determine if authorization was granted, denied, or failed: * * 3: Success – OAuth2 flow completed, the background thread exited, and the successful response is in AccessTokenResponse. * 4: Access Denied – OAuth2 flow completed, the background thread exited, and the error response is in AccessTokenResponse. * 5: Failure – OAuth2 flow failed before completion, the background thread exited, and error details are in FailureInfo. IF (loOauth2.AuthFlowState = 5) THEN ? "OAuth2 failed to complete." ? loOauth2.FailureInfo RELEASE loOauth2 CANCEL ENDIF IF (loOauth2.AuthFlowState = 4) THEN ? "OAuth2 authorization was denied." ? loOauth2.AccessTokenResponse RELEASE loOauth2 CANCEL ENDIF IF (loOauth2.AuthFlowState <> 3) THEN ? "Unexpected AuthFlowState:" + STR(loOauth2.AuthFlowState) RELEASE loOauth2 CANCEL ENDIF ? "OAuth2 authorization granted!" ? "Access Token = " + loOauth2.AccessToken * Save the full JSON access token response to a file. * For versions of Chilkat < 10.0.0, use CreateObject('Chilkat_9_5_0.StringBuilder') loSbJson = CreateObject('Chilkat.StringBuilder') loSbJson.Append(loOauth2.AccessTokenResponse) loSbJson.WriteFile("qa_data/tokens/_salesforce.json","utf-8",0) * The saved JSON response looks like this: * { * "access_token": "00D41000....uLZBpT6", * "refresh_token": "5Aep....25xdGgkrV", * "signature": "cjTbSc5DvcKpaMoRTzuQTJLb1tcMw8LEO01flq4aMD4=", * "scope": "refresh_token id", * "instance_url": "https://d41000000f8a0eak-dev-ed.my.salesforce.com", * "id": "https://login.salesforce.com/id/00D41000000F8A0EAK/005410000....xAAE", * "token_type": "Bearer", * "issued_at": "1738348388166" * } * -------------------------------------------------------------------------- * Here's a screenshot of a Salesforce Connected App * with the correct Callback URL for this example, * and also selects "Require Proof Key for Code Exchange (PKCE)" * and does not requires the secret for the authorization or refresh flow, * and also allows for the Client Credentials flow. * RELEASE loOauth2 RELEASE loSbJson |
© 2000-2025 Chilkat Software, Inc. All Rights Reserved.