(SQL Server) Get Google API Access Token using JSON Private Key using NIST Time Server Date/Time

Demonstrates how to get a Google API access token using a JSON service account private key, using the NIST time server date/time rather than the local system date/time.

Chilkat ActiveX Downloads ActiveX for 32-bit and 64-bit Windows

-- Important: See this note about string length limitations for strings returned by sp_OAMethod calls.
--
CREATE PROCEDURE ChilkatSample
AS
BEGIN
    DECLARE @hr int
    DECLARE @iTmp0 int
    -- Important: Do not use nvarchar(max).  See the warning about using nvarchar(max).
    DECLARE @sTmp0 nvarchar(4000)
    -- This example requires the Chilkat API to have been previously unlocked.
    -- See Global Unlock Sample for sample code.

    -- First, let's get the current date/time from time-c.nist.gov
    DECLARE @socket int
    -- Use "Chilkat_9_5_0.Socket" for versions of Chilkat < 10.0.0
    EXEC @hr = sp_OACreate 'Chilkat.Socket', @socket OUT
    IF @hr <> 0
    BEGIN
        PRINT 'Failed to create ActiveX component'
        RETURN
    END

    -- Connect to an NIST time server and read the current date/time
    DECLARE @maxWaitMs int
    SELECT @maxWaitMs = 8000
    DECLARE @useTls int
    SELECT @useTls = 0
    DECLARE @success int
    EXEC sp_OAMethod @socket, 'Connect', @success OUT, 'time-c.nist.gov', 37, @useTls, @maxWaitMs
    IF @success <> 1
      BEGIN
        EXEC sp_OAGetProperty @socket, 'LastErrorText', @sTmp0 OUT
        PRINT @sTmp0
        EXEC @hr = sp_OADestroy @socket
        RETURN
      END

    -- The time server will send a big-endian 32-bit integer representing
    -- the number of seconds since since 00:00 (midnight) 1 January 1900 GMT.
    -- The ReceiveInt32 method will receive a 4-byte integer, but returns
    -- 1 or 0 to indicate success.  If successful, the integer
    -- is obtained via the ReceivedInt property.
    DECLARE @bigEndian int
    SELECT @bigEndian = 1
    EXEC sp_OAMethod @socket, 'ReceiveInt32', @success OUT, @bigEndian
    IF @success <> 1
      BEGIN
        EXEC sp_OAGetProperty @socket, 'LastErrorText', @sTmp0 OUT
        PRINT @sTmp0
        EXEC @hr = sp_OADestroy @socket
        RETURN
      END

    DECLARE @dt int
    -- Use "Chilkat_9_5_0.CkDateTime" for versions of Chilkat < 10.0.0
    EXEC @hr = sp_OACreate 'Chilkat.CkDateTime', @dt OUT

    EXEC sp_OAGetProperty @socket, 'ReceivedInt', @iTmp0 OUT
    EXEC sp_OAMethod @dt, 'SetFromNtpTime', @success OUT, @iTmp0

    -- Show the current local date/time
    DECLARE @bLocalTime int
    SELECT @bLocalTime = 1

    EXEC sp_OAMethod @dt, 'GetAsRfc822', @sTmp0 OUT, @bLocalTime
    PRINT 'Current local date/time: ' + @sTmp0

    SELECT @maxWaitMs = 10
    EXEC sp_OAMethod @socket, 'Close', @success OUT, @maxWaitMs

    -- ------------------------------------------------------------------------
    -- OK, we have the current date/time.  We'll use it to set the IAT property
    -- in the code below.

    -- First load the JSON key into a string.
    DECLARE @fac int
    -- Use "Chilkat_9_5_0.FileAccess" for versions of Chilkat < 10.0.0
    EXEC @hr = sp_OACreate 'Chilkat.FileAccess', @fac OUT

    DECLARE @jsonKey nvarchar(4000)
    EXEC sp_OAMethod @fac, 'ReadEntireTextFile', @jsonKey OUT, 'qa_data/googleApi/ChilkatTest-ab2ecd52ef98.json', 'utf-8'
    EXEC sp_OAGetProperty @fac, 'LastMethodSuccess', @iTmp0 OUT
    IF @iTmp0 <> 1
      BEGIN
        EXEC sp_OAGetProperty @fac, 'LastErrorText', @sTmp0 OUT
        PRINT @sTmp0
        EXEC @hr = sp_OADestroy @socket
        EXEC @hr = sp_OADestroy @dt
        EXEC @hr = sp_OADestroy @fac
        RETURN
      END

    -- A JSON private key should look like this:

    -- 	{
    -- 	  "type": "service_account",
    -- 	  "project_id": "chilkattest-1350",
    -- 	  "private_key_id": "fa2e36ee26986eab628b59868af8bec1d1c64c38",
    -- 	  "private_key": "-----BEGIN PRIVATE KEY-----\nMIIEvgIjFa...28N64N2n1E4FYzBZjSdy\n-----END PRIVATE KEY-----\n",
    -- 	  "client_email": "598922945226-00rb0ppfg0sndajo6bhvd4v17jtj2d3a@developer.gserviceaccount.com",
    -- 	  "client_id": "598922945226-00rb0ppfg0snd9jo7bhvd4v17jtj2d3a.apps.googleusercontent.com",
    -- 	  "auth_uri": "https://accounts.google.com/o/oauth2/auth",
    -- 	  "token_uri": "https://accounts.google.com/o/oauth2/token",
    -- 	  "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
    -- 	  "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/598922945226-00rb0ppfg0sndajo6bhvd4v17jtj2d3a%40developer.gserviceaccount.com"
    -- 	}

    DECLARE @gAuth int
    -- Use "Chilkat_9_5_0.AuthGoogle" for versions of Chilkat < 10.0.0
    EXEC @hr = sp_OACreate 'Chilkat.AuthGoogle', @gAuth OUT

    EXEC sp_OASetProperty @gAuth, 'JsonKey', @jsonKey

    -- Choose a scope.
    EXEC sp_OASetProperty @gAuth, 'Scope', 'https://www.googleapis.com/auth/cloud-platform'

    -- Request an access token that is valid for this many seconds.
    EXEC sp_OASetProperty @gAuth, 'ExpireNumSeconds', 3600

    -- If the application is requesting delegated access:
    -- The email address of the user for which the application is requesting delegated access,
    -- then set the email address here. (Otherwise leave it empty.)
    EXEC sp_OASetProperty @gAuth, 'SubEmailAddress', ''

    -- ------------------------------------------------------------------------
    -- Set the IAT using the date/time from the NIST time server.
    DECLARE @unixTime int
    EXEC sp_OAMethod @dt, 'GetAsUnixTime', @unixTime OUT, 0

    PRINT 'unixTime = ' + @unixTime
    EXEC sp_OASetProperty @gAuth, 'Iat', @unixTime

    -- Connect to www.googleapis.com using TLS (TLS 1.2 is the default.)
    -- The Chilkat socket object is used so that the connection can be established
    -- through proxies or an SSH tunnel if desired.
    DECLARE @tlsSock int
    -- Use "Chilkat_9_5_0.Socket" for versions of Chilkat < 10.0.0
    EXEC @hr = sp_OACreate 'Chilkat.Socket', @tlsSock OUT

    DECLARE @success int
    EXEC sp_OAMethod @tlsSock, 'Connect', @success OUT, 'www.googleapis.com', 443, 1, 5000
    IF @success <> 1
      BEGIN
        EXEC sp_OAGetProperty @tlsSock, 'LastErrorText', @sTmp0 OUT
        PRINT @sTmp0
        EXEC @hr = sp_OADestroy @socket
        EXEC @hr = sp_OADestroy @dt
        EXEC @hr = sp_OADestroy @fac
        EXEC @hr = sp_OADestroy @gAuth
        EXEC @hr = sp_OADestroy @tlsSock
        RETURN
      END

    -- Send the request to obtain the access token.
    EXEC sp_OAMethod @gAuth, 'ObtainAccessToken', @success OUT, @tlsSock
    IF @success <> 1
      BEGIN
        EXEC sp_OAGetProperty @gAuth, 'LastErrorText', @sTmp0 OUT
        PRINT @sTmp0
        EXEC @hr = sp_OADestroy @socket
        EXEC @hr = sp_OADestroy @dt
        EXEC @hr = sp_OADestroy @fac
        EXEC @hr = sp_OADestroy @gAuth
        EXEC @hr = sp_OADestroy @tlsSock
        RETURN
      END

    -- Examine the access token:

    EXEC sp_OAGetProperty @gAuth, 'AccessToken', @sTmp0 OUT
    PRINT 'Access Token: ' + @sTmp0

    EXEC @hr = sp_OADestroy @socket
    EXEC @hr = sp_OADestroy @dt
    EXEC @hr = sp_OADestroy @fac
    EXEC @hr = sp_OADestroy @gAuth
    EXEC @hr = sp_OADestroy @tlsSock


END
GO