Sample code for 30+ languages & platforms
Lianja

ZATCA Onboarding Get Compliance CSID

See more ZATCA Examples

Demonstrates sending a POST to get a compliance CSID, which is two parts: A binary security token, and a secret.

Chilkat Lianja Downloads

Lianja
llSuccess = .F.

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// It is assumed you've already generated a CSR.
// Also, you'll need an OTP code, valid for 1 hour, which is generated online in the Fatoora portal.  See 
// https://zatca.gov.sa/ar/E-Invoicing/Introduction/Guidelines/Documents/E-invoicing%20Detailed%20Technical%20Guidelines.pdf

// Manually replace this with the OTP code you interactively obtained in a browser session from the Fatoora portal.
// The OTP code is valid for 1 hour.
lcOtp = "123434"

// You should already have a CSR in a file containing something that looks like this:

// -----BEGIN CERTIFICATE REQUEST-----
// MIIB5DCCAYsCAQAwTDELMAkGA1UEBhMCU0ExFTATBgNVBAsMDFJpeWFkIEJyYW5j
// aDEQMA4GA1UECgwHQ29udG9zbzEUMBIGA1UEAwwLRUExMjM0NTY3ODkwVjAQBgcq
// hkjOPQIBBgUrgQQACgNCAAQI6op+6GQ4Gmn9oy0DpGxX0lFtUIvj+4Jtnp0VyEsH
// +ZO7lpgksbRC484R3fAsO0v+Ly24ZIUIOYEIAeJ1f6AooIHfMIHcBgkqhkiG9w0B
// CQ4xgc4wgcswIQYJKwYBBAGCNxQCBBQTElpBVENBLUNvZGUtU2lnbmluZzCBpQYD
// VR0RBIGdMIGapIGXMIGUMTswOQYDVQQEDDIxLVRTVHwyLVRTVHwzLWVkMjJmMWQ4
// LWU2YTItMTExOC05YjU4LWQ5YThmMTFlNDQ1ZjEfMB0GCgmSJomT8ixkAQEMDzMx
// MDEyMjM5MzUwMDAwMzENMAsGA1UEDAwEMTEwMDESMBAGA1UEGgwJTXlBZGRyZXNz
// MREwDwYDVQQPDAhJbmR1c3RyeTAKBggqhkjOPQQDAgNHADBEAiBurm6KdAeHfXzt
// h/jk8xSMBP4TAkkFrg+hWDhfI0/SuAIgJi8ectM7YwBIBCmf0tdFcVTU7GBbvjnK
// xValZCAO39M=
// -----END CERTIFICATE REQUEST-----

loPem = createobject("CkPem")
llSuccess = loPem.LoadPemFile("c:/aaworkarea/zatca/onboarding/taxpayer.csr","")
if (llSuccess = .F.) then
    ? loPem.LastErrorText
    release loPem
    return
endif

// Get the base64 from the CSR in a single line.
loSbCsrBase64 = createobject("CkStringBuilder")
loSbCsrBase64.Append(loPem.GetEncodedItem("csr","","base64",0))
lnNumReplaced = loSbCsrBase64.Replace(Chr(13),"")
lnNumReplaced = loSbCsrBase64.Replace(Chr(10),"")
lcCsrBase64 = loSbCsrBase64.GetAsString()
? lcCsrBase64

loJson = createobject("CkJsonObject")
loJson.EmitCompact = .F.
loJson.UpdateSb("csr",loSbCsrBase64)

loHttp = createobject("CkHttp")
loHttp.Accept = "application/json"
loHttp.SetRequestHeader("OTP",lcOtp)
loHttp.SetRequestHeader("Accept-Version","V2")
loResp = createobject("CkHttpResponse")
llSuccess = loHttp.HttpJson("POST","https://gw-apic-gov.gazt.gov.sa/e-invoicing/core/compliance",loJson,"application/json",loResp)
if (llSuccess = .F.) then
    ? loHttp.LastErrorText
    release loPem
    release loSbCsrBase64
    release loJson
    release loHttp
    release loResp
    return
endif

if (loResp.StatusCode <> 200) then
    ? loResp.BodyStr
    ? "response status code = " + str(loResp.StatusCode)
    ? "Failed"
    release loPem
    release loSbCsrBase64
    release loJson
    release loHttp
    release loResp
    return
endif

loJsonResp = createobject("CkJsonObject")
loResp.GetBodyJson(loJsonResp)

loJsonResp.EmitCompact = .F.
? "JSON response:"
? loJsonResp.Emit()


release loPem
release loSbCsrBase64
release loJson
release loHttp
release loResp
release loJsonResp