(Swift 2) Twitter OAuth1 Authorization (3-legged)

Demonstrates 3-legged OAuth1 authorization for Twitter.

Chilkat Downloads for the Swift Programming Language MAC OS X (Cocoa) Objective-C/Swift Libs iOS Objective-C/Swift Libs

func chilkatTest() {
    var consumerKey: String? = "TWITTER_CONSUMER_KEY"
    var consumerSecret: String? = "TWITTER_CONSUMER_SECRET"

    var requestTokenUrl: String? = "https://api.twitter.com/oauth/request_token"
    var authorizeUrl: String? = "https://api.twitter.com/oauth/authorize"
    var accessTokenUrl: String? = "https://api.twitter.com/oauth/access_token"

    // The port number is picked at random. It's some unused port that won't likely conflict with anything else..
    var callbackUrl: String? = "http://localhost:3017/"
    var callbackLocalPort: Int = 3017

    // The 1st step in 3-legged OAuth1.0a is to send a POST to the request token URL to obtain an OAuth Request Token
    let http = CkoHttp()
    var success: Bool

    http.OAuth1 = true
    http.OAuthConsumerKey = consumerKey
    http.OAuthConsumerSecret = consumerSecret

    let req = CkoHttpRequest()
    req.AddParam("oauth_callback", value: callbackUrl)

    var resp: CkoHttpResponse? = http.PostUrlEncoded(requestTokenUrl, req: req)
    if http.LastMethodSuccess != true {
        print("\(http.LastErrorText)")
        return
    }

    // If successful, the resp.BodyStr contains something like this:  
    // oauth_token=-Wa_KwAAAAAAxfEPAAABV8Qar4Q&oauth_token_secret=OfHY4tZBX2HK4f7yIw76WYdvnl99MVGB&oauth_callback_confirmed=true
    print("\(resp!.BodyStr)")

    if resp!.StatusCode.intValue != 200 {
        print("Failed response status code: \(resp!.StatusCode.intValue)")
        resp = nil
        return
    }

    let hashTab = CkoHashtable()
    hashTab.AddQueryParams(resp!.BodyStr)

    var requestToken: String? = hashTab.LookupStr("oauth_token")
    var requestTokenSecret: String? = hashTab.LookupStr("oauth_token_secret")
    http.OAuthTokenSecret = requestTokenSecret

    resp = nil

    print("oauth_token = \(requestToken!)")
    print("oauth_token_secret = \(requestTokenSecret!)")

    // ---------------------------------------------------------------------------
    // The next step is to form a URL to send to the authorizeUrl
    // This is an HTTP GET that we load into a popup browser.
    let sbUrlForBrowser = CkoStringBuilder()
    sbUrlForBrowser.Append(authorizeUrl)
    sbUrlForBrowser.Append("?oauth_token=")
    sbUrlForBrowser.Append(requestToken)
    var url: String? = sbUrlForBrowser.GetAsString()

    // At this point, your application should load the URL in a browser.
    // For example, 
    // in C#: System.Diagnostics.Process.Start(url);
    // in Java: Desktop.getDesktop().browse(new URI(url));
    // in VBScript: Set wsh=WScript.CreateObject("WScript.Shell")
    //              wsh.Run url
    // in Xojo: ShowURL(url)  (see http://docs.xojo.com/index.php/ShowURL)
    // in Dataflex: Runprogram Background "c:\Program Files\Internet Explorer\iexplore.exe" sUrl        
    // The Microsoft account owner would interactively accept or deny the authorization request.

    // Add the code to load the url in a web browser here...
    // Add the code to load the url in a web browser here...
    // Add the code to load the url in a web browser here...

    // When the url is loaded into a browser, the response from Twitter will redirect back to localhost:3017
    // We'll need to start a socket that is listening on port 3017 for the callback from the browser.
    let listenSock = CkoSocket()

    var backLog: Int = 5
    success = listenSock.BindAndListen(callbackLocalPort, backlog: backLog)
    if success != true {
        print("\(listenSock.LastErrorText)")
        return
    }

    // Wait for the browser's connection in a background thread.
    // (We'll send load the URL into the browser following this..)
    // Wait a max of 60 seconds before giving up.
    var maxWaitMs: Int = 60000
    var task: CkoTask? = listenSock.AcceptNextConnectionAsync(maxWaitMs)
    task!.Run()

    // At this point, your application should load the URL in a browser.
    // For example, 
    // in C#: System.Diagnostics.Process.Start(url);
    // in Java: Desktop.getDesktop().browse(new URI(url));
    // in VBScript: Set wsh=WScript.CreateObject("WScript.Shell")
    //              wsh.Run url
    // in Xojo: ShowURL(url)  (see http://docs.xojo.com/index.php/ShowURL)
    // in Dataflex: Runprogram Background "c:\Program Files\Internet Explorer\iexplore.exe" sUrl        
    // The Twitter account owner would interactively accept or deny the authorization request.

    // Add the code to load the url in a web browser here...
    // Add the code to load the url in a web browser here...
    // Add the code to load the url in a web browser here...
    // System.Diagnostics.Process.Start(url);

    // Wait for the listenSock's task to complete.
    success = task!.Wait(maxWaitMs)
    if !success || (task!.StatusInt.intValue != 7) || (task!.TaskSuccess != true) {
        if !success {
            // The task.LastErrorText applies to the Wait method call.
            print("\(task!.LastErrorText)")
        }
        else {
            // The ResultErrorText applies to the underlying task method call (i.e. the AcceptNextConnection)
            print("\(task!.Status)")
            print("\(task!.ResultErrorText)")
        }

        task = nil
        return
    }

    // If we get to this point, the connection from the browser arrived and was accepted.

    // We no longer need the listen socket...
    // Stop listening on port 3017.
    listenSock.Close(10)

    // First get the connected socket.
    let sock = CkoSocket()
    sock.LoadTaskResult(task)
    task = nil

    // Read the start line of the request..
    var startLine: String? = sock.ReceiveUntilMatch("\r\n")
    if sock.LastMethodSuccess != true {
        print("\(sock.LastErrorText)")
        return
    }

    // Read the request header.
    var requestHeader: String? = sock.ReceiveUntilMatch("\r\n\r\n")
    if sock.LastMethodSuccess != true {
        print("\(sock.LastErrorText)")
        return
    }

    // The browser SHOULD be sending us a GET request, and therefore there is no body to the request.
    // Once the request header is received, we have all of it.
    // We can now send our HTTP response.
    let sbResponseHtml = CkoStringBuilder()
    sbResponseHtml.Append("<html><body><p>Chilkat thanks you!</b></body</html>")

    let sbResponse = CkoStringBuilder()
    sbResponse.Append("HTTP/1.1 200 OK\r\n")
    sbResponse.Append("Content-Length: ")
    sbResponse.AppendInt(sbResponseHtml.Length.intValue)
    sbResponse.Append("\r\n")
    sbResponse.Append("Content-Type: text/html\r\n")
    sbResponse.Append("\r\n")
    sbResponse.AppendSb(sbResponseHtml)

    sock.SendString(sbResponse.GetAsString())
    sock.Close(50)

    // The information we need is in the startLine.
    // For example, the startLine will look like this:
    //  GET /?oauth_token=abcdRQAAZZAAxfBBAAABVabcd_k&oauth_verifier=9rdOq5abcdCe6cn8M3jabcdj3Eabcd HTTP/1.1
    let sbStartLine = CkoStringBuilder()
    sbStartLine.Append(startLine)
    var numReplacements: Int = sbStartLine.Replace("GET /?", replacement: "").intValue
    numReplacements = sbStartLine.Replace(" HTTP/1.1", replacement: "").intValue
    sbStartLine.Trim()

    // oauth_token=abcdRQAAZZAAxfBBAAABVabcd_k&oauth_verifier=9rdOq5abcdCe6cn8M3jabcdj3Eabcd
    print("startline: \(sbStartLine.GetAsString())")

    hashTab.Clear()
    hashTab.AddQueryParams(sbStartLine.GetAsString())

    requestToken = hashTab.LookupStr("oauth_token")
    var authVerifier: String? = hashTab.LookupStr("oauth_verifier")

    // ------------------------------------------------------------------------------
    // Finally , we must exchange the OAuth Request Token for an OAuth Access Token.

    http.OAuthToken = requestToken
    http.OAuthVerifier = authVerifier

    // We don't need the "Authorization: OAuth ..." header for this POST.
    http.OAuth1 = false
    req.RemoveParam("oauth_callback")
    req.AddParam("oauth_verifier", value: authVerifier)
    req.AddParam("oauth_token", value: requestToken)

    resp = http.PostUrlEncoded(accessTokenUrl, req: req)
    if http.LastMethodSuccess != true {
        print("\(http.LastErrorText)")
        return
    }

    // Make sure a successful response was received.
    if resp!.StatusCode.intValue != 200 {
        print("\(resp!.StatusLine)")
        print("\(resp!.Header)")
        print("\(resp!.BodyStr)")
        return
    }

    // If successful, the resp.BodyStr contains something like this:
    // oauth_token=85123455-fF41296Bi3daM8eCo9Y5vZabcdxXpRv864plYPOjr&oauth_token_secret=afiYJOgabcdSfGae7BDvJVVTwys8fUGpra5guZxbmFBZo&user_id=85612355&screen_name=chilkatsoft&x_auth_expires=0
    print("\(resp!.BodyStr)")

    hashTab.Clear()
    hashTab.AddQueryParams(resp!.BodyStr)

    var accessToken: String? = hashTab.LookupStr("oauth_token")
    var accessTokenSecret: String? = hashTab.LookupStr("oauth_token_secret")
    var userId: String? = hashTab.LookupStr("user_id")
    var screenName: String? = hashTab.LookupStr("screen_name")

    resp = nil

    // The access token + secret is what should be saved and used for
    // subsequent REST API calls.
    print("Access Token = \(accessToken!)")
    print("Access Token Secret = \(accessTokenSecret!)")
    print("user_id = \(userId!)")
    print("screen_name  = \(screenName!)")

    // Save this access token for future calls.
    // Just in case we need user_id and screen_name, save those also..
    let json = CkoJsonObject()
    json.AppendString("oauth_token", value: accessToken)
    json.AppendString("oauth_token_secret", value: accessTokenSecret)
    json.AppendString("user_id", value: userId)
    json.AppendString("screen_name", value: screenName)

    let fac = CkoFileAccess()
    fac.WriteEntireTextFile("qa_data/tokens/twitter.json", fileData: json.Emit(), charset: "utf-8", includePreamble: false)

    print("Success.")

}