|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(SQL Server) Add Custom Claims to JWT for Google Service Account OAuth2Demonstrates how add custom claims to the JWT when getting a Google API OAuth2 access token using a JSON service account private key.
-- Important: See this note about string length limitations for strings returned by sp_OAMethod calls. -- CREATE PROCEDURE ChilkatSample AS BEGIN DECLARE @hr int DECLARE @iTmp0 int -- Important: Do not use nvarchar(max). See the warning about using nvarchar(max). DECLARE @sTmp0 nvarchar(4000) -- This example requires the Chilkat API to have been previously unlocked. -- See Global Unlock Sample for sample code. -- First load the JSON key into a string. DECLARE @fac int -- Use "Chilkat_9_5_0.FileAccess" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.FileAccess', @fac OUT IF @hr <> 0 BEGIN PRINT 'Failed to create ActiveX component' RETURN END DECLARE @jsonKey nvarchar(4000) EXEC sp_OAMethod @fac, 'ReadEntireTextFile', @jsonKey OUT, 'qa_data/googleApi/ChilkatTest-ab2ecd52ef98.json', 'utf-8' EXEC sp_OAGetProperty @fac, 'LastMethodSuccess', @iTmp0 OUT IF @iTmp0 <> 1 BEGIN EXEC sp_OAGetProperty @fac, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @fac RETURN END -- A JSON private key should look like this: -- { -- "type": "service_account", -- "project_id": "chilkattest-1350", -- "private_key_id": "fa2e36ee26986eab628b59868af8bec1d1c64c38", -- "private_key": "-----BEGIN PRIVATE KEY-----\nMIIEvgIjFa...28N64N2n1E4FYzBZjSdy\n-----END PRIVATE KEY-----\n", -- "client_email": "598922945226-00rb0ppfg0sndajo6bhvd4v17jtj2d3a@developer.gserviceaccount.com", -- "client_id": "598922945226-00rb0ppfg0snd9jo7bhvd4v17jtj2d3a.apps.googleusercontent.com", -- "auth_uri": "https://accounts.google.com/o/oauth2/auth", -- "token_uri": "https://accounts.google.com/o/oauth2/token", -- "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs", -- "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/598922945226-00rb0ppfg0sndajo6bhvd4v17jtj2d3a%40developer.gserviceaccount.com" -- } DECLARE @gAuth int -- Use "Chilkat_9_5_0.AuthGoogle" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.AuthGoogle', @gAuth OUT EXEC sp_OASetProperty @gAuth, 'JsonKey', @jsonKey -- Choose a scope. EXEC sp_OASetProperty @gAuth, 'Scope', 'https://www.googleapis.com/auth/cloud-platform' -- Request an access token that is valid for this many seconds. EXEC sp_OASetProperty @gAuth, 'ExpireNumSeconds', 3600 -- If the application is requesting delegated access: -- The email address of the user for which the application is requesting delegated access, -- then set the email address here. (Otherwise leave it empty.) EXEC sp_OASetProperty @gAuth, 'SubEmailAddress', '' -- -------------------------------------------------------------------------------------- -- To add custom claims, create JSON containing the claims to be added and call AddClaims. DECLARE @moreClaims int -- Use "Chilkat_9_5_0.JsonObject" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.JsonObject', @moreClaims OUT DECLARE @success int EXEC sp_OAMethod @moreClaims, 'UpdateString', @success OUT, 'claimAbc', 'valueAbc' EXEC sp_OAMethod @moreClaims, 'UpdateString', @success OUT, 'claimXyz', 'valueXyz' -- ... EXEC sp_OAMethod @gAuth, 'AddClaims', @success OUT, @moreClaims -- -------------------------------------------------------------------------------------- -- Connect to www.googleapis.com using TLS (TLS 1.2 is the default.) -- The Chilkat socket object is used so that the connection can be established -- through proxies or an SSH tunnel if desired. DECLARE @tlsSock int -- Use "Chilkat_9_5_0.Socket" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.Socket', @tlsSock OUT DECLARE @success int EXEC sp_OAMethod @tlsSock, 'Connect', @success OUT, 'www.googleapis.com', 443, 1, 5000 IF @success <> 1 BEGIN EXEC sp_OAGetProperty @tlsSock, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @fac EXEC @hr = sp_OADestroy @gAuth EXEC @hr = sp_OADestroy @moreClaims EXEC @hr = sp_OADestroy @tlsSock RETURN END -- Send the request to obtain the access token. EXEC sp_OAMethod @gAuth, 'ObtainAccessToken', @success OUT, @tlsSock IF @success <> 1 BEGIN EXEC sp_OAGetProperty @gAuth, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @fac EXEC @hr = sp_OADestroy @gAuth EXEC @hr = sp_OADestroy @moreClaims EXEC @hr = sp_OADestroy @tlsSock RETURN END -- Examine the access token: EXEC sp_OAGetProperty @gAuth, 'AccessToken', @sTmp0 OUT PRINT 'Access Token: ' + @sTmp0 EXEC @hr = sp_OADestroy @fac EXEC @hr = sp_OADestroy @gAuth EXEC @hr = sp_OADestroy @moreClaims EXEC @hr = sp_OADestroy @tlsSock END GO |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.