Sample code for 30+ languages & platforms
JavaScript

Automatically Refresh Token for 401 Unauthorized

See more Google Calendar Examples

Demonstrates how to automatically refresh an access token (without user interaction) when the token expires and a 401 Unauthorized response is received.
Note
This example is intended for running within a Chilkat.Js embedded JavaScript engine. All Chilkat JavaScript examples require Chilkat v11.4.0 or greater.
JavaScript
var success = false;

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

var tokenFilePath = "qa_data/tokens/googleCalendar.json";

// Get our current access token.
var jsonToken = new CkJsonObject();
success = jsonToken.LoadFile(tokenFilePath);
if (jsonToken.HasMember("access_token") == false) {
    console.log("No access token found.");
    return;
}

var http = new CkHttp();
http.AuthToken = jsonToken.StringOf("access_token");

var jsonResponse = http.QuickGetStr("https://www.googleapis.com/calendar/v3/users/me/calendarList");
if (http.LastMethodSuccess !== true) {

    if (http.LastStatus !== 401) {
        console.log(http.LastErrorText);
        console.log("----");
        console.log(http.LastResponseBody);
        return;
    }

    // The access token must've expired. 
    // Refresh the access token and then retry the request.
    var oauth2 = new CkOAuth2();

    oauth2.TokenEndpoint = "https://www.googleapis.com/oauth2/v4/token";

    // Replace these with actual values.
    oauth2.ClientId = "GOOGLE-CLIENT-ID";
    oauth2.ClientSecret = "GOOGLE-CLIENT-SECRET";

    // Get the "refresh_token"
    oauth2.RefreshToken = jsonToken.StringOf("refresh_token");

    // Send the HTTP POST to refresh the access token..
    success = oauth2.RefreshAccessToken();
    if (success !== true) {
        console.log(oauth2.LastErrorText);
        return;
    }

    // The response contains a new access token, but we must keep
    // our existing refresh token for when we need to refresh again in the future.
    jsonToken.UpdateString("access_token",oauth2.AccessToken);

    // Save the new JSON access token response to a file.
    var sbJson = new CkStringBuilder();
    jsonToken.EmitCompact = false;
    jsonToken.EmitSb(sbJson);
    sbJson.WriteFile(tokenFilePath,"utf-8",false);

    console.log("OAuth2 authorization granted!");
    console.log("New Access Token = " + oauth2.AccessToken);

    // re-try the original request.
    http.AuthToken = oauth2.AccessToken;
    jsonResponse = http.QuickGetStr("https://www.googleapis.com/calendar/v3/users/me/calendarList");
    if (http.LastMethodSuccess !== true) {
        console.log(http.LastErrorText);
        return;
    }

}

console.log(jsonResponse);
console.log("-----------------------------");