(Unicode C) Get Google API Access Token using JSON Private Key using NIST Time Server Date/Time

Demonstrates how to get a Google API access token using a JSON service account private key, using the NIST time server date/time rather than the local system date/time.

Chilkat C/C++ Library Downloads
MS Visual C/C++ Linux/CentOS C/C++ Alpine Linux C/C++ MAC OS X C/C++	armhf/aarch64 C/C++ C++ Builder iOS C/C++ Android C/C++	Solaris C/C++ MinGW C/C++

#include <C_CkSocketW.h>
#include <C_CkDateTimeW.h>
#include <C_CkFileAccessW.h>
#include <C_CkAuthGoogleW.h>

void ChilkatSample(void)
    {
    HCkSocketW socket;
    int maxWaitMs;
    BOOL useTls;
    BOOL success;
    BOOL bigEndian;
    HCkDateTimeW dt;
    BOOL bLocalTime;
    HCkFileAccessW fac;
    const wchar_t *jsonKey;
    HCkAuthGoogleW gAuth;
    int unixTime;
    HCkSocketW tlsSock;
    BOOL success;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // First, let's get the current date/time from time-c.nist.gov
    socket = CkSocketW_Create();

    // Connect to an NIST time server and read the current date/time
    maxWaitMs = 8000;
    useTls = FALSE;
    success = CkSocketW_Connect(socket,L"time-c.nist.gov",37,useTls,maxWaitMs);
    if (success != TRUE) {
        wprintf(L"%s\n",CkSocketW_lastErrorText(socket));
        CkSocketW_Dispose(socket);
        return;
    }

    // The time server will send a big-endian 32-bit integer representing
    // the number of seconds since since 00:00 (midnight) 1 January 1900 GMT.
    // The ReceiveInt32 method will receive a 4-byte integer, but returns
    // TRUE or FALSE to indicate success.  If successful, the integer
    // is obtained via the ReceivedInt property.
    bigEndian = TRUE;
    success = CkSocketW_ReceiveInt32(socket,bigEndian);
    if (success != TRUE) {
        wprintf(L"%s\n",CkSocketW_lastErrorText(socket));
        CkSocketW_Dispose(socket);
        return;
    }

    dt = CkDateTimeW_Create();
    CkDateTimeW_SetFromNtpTime(dt,CkSocketW_getReceivedInt(socket));

    // Show the current local date/time
    bLocalTime = TRUE;
    wprintf(L"Current local date/time: %s\n",CkDateTimeW_getAsRfc822(dt,bLocalTime));

    maxWaitMs = 10;
    CkSocketW_Close(socket,maxWaitMs);

    // ------------------------------------------------------------------------
    // OK, we have the current date/time.  We'll use it to set the IAT property
    // in the code below.

    // First load the JSON key into a string.
    fac = CkFileAccessW_Create();
    jsonKey = CkFileAccessW_readEntireTextFile(fac,L"qa_data/googleApi/ChilkatTest-ab2ecd52ef98.json",L"utf-8");
    if (CkFileAccessW_getLastMethodSuccess(fac) != TRUE) {
        wprintf(L"%s\n",CkFileAccessW_lastErrorText(fac));
        CkSocketW_Dispose(socket);
        CkDateTimeW_Dispose(dt);
        CkFileAccessW_Dispose(fac);
        return;
    }

    // A JSON private key should look like this:

    // 	{
    // 	  "type": "service_account",
    // 	  "project_id": "chilkattest-1350",
    // 	  "private_key_id": "fa2e36ee26986eab628b59868af8bec1d1c64c38",
    // 	  "private_key": "-----BEGIN PRIVATE KEY-----\nMIIEvgIjFa...28N64N2n1E4FYzBZjSdy\n-----END PRIVATE KEY-----\n",
    // 	  "client_email": "598922945226-00rb0ppfg0sndajo6bhvd4v17jtj2d3a@developer.gserviceaccount.com",
    // 	  "client_id": "598922945226-00rb0ppfg0snd9jo7bhvd4v17jtj2d3a.apps.googleusercontent.com",
    // 	  "auth_uri": "https://accounts.google.com/o/oauth2/auth",
    // 	  "token_uri": "https://accounts.google.com/o/oauth2/token",
    // 	  "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
    // 	  "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/598922945226-00rb0ppfg0sndajo6bhvd4v17jtj2d3a%40developer.gserviceaccount.com"
    // 	}

    gAuth = CkAuthGoogleW_Create();
    CkAuthGoogleW_putJsonKey(gAuth,jsonKey);

    // Choose a scope.
    CkAuthGoogleW_putScope(gAuth,L"https://www.googleapis.com/auth/cloud-platform");

    // Request an access token that is valid for this many seconds.
    CkAuthGoogleW_putExpireNumSeconds(gAuth,3600);

    // If the application is requesting delegated access:
    // The email address of the user for which the application is requesting delegated access,
    // then set the email address here. (Otherwise leave it empty.)
    CkAuthGoogleW_putSubEmailAddress(gAuth,L"");

    // ------------------------------------------------------------------------
    // Set the IAT using the date/time from the NIST time server.
    unixTime = CkDateTimeW_GetAsUnixTime(dt,FALSE);
    wprintf(L"unixTime = %d\n",unixTime);
    CkAuthGoogleW_putIat(gAuth,unixTime);

    // Connect to www.googleapis.com using TLS (TLS 1.2 is the default.)
    // The Chilkat socket object is used so that the connection can be established
    // through proxies or an SSH tunnel if desired.
    tlsSock = CkSocketW_Create();
    success = CkSocketW_Connect(tlsSock,L"www.googleapis.com",443,TRUE,5000);
    if (success != TRUE) {
        wprintf(L"%s\n",CkSocketW_lastErrorText(tlsSock));
        CkSocketW_Dispose(socket);
        CkDateTimeW_Dispose(dt);
        CkFileAccessW_Dispose(fac);
        CkAuthGoogleW_Dispose(gAuth);
        CkSocketW_Dispose(tlsSock);
        return;
    }

    // Send the request to obtain the access token.
    success = CkAuthGoogleW_ObtainAccessToken(gAuth,tlsSock);
    if (success != TRUE) {
        wprintf(L"%s\n",CkAuthGoogleW_lastErrorText(gAuth));
        CkSocketW_Dispose(socket);
        CkDateTimeW_Dispose(dt);
        CkFileAccessW_Dispose(fac);
        CkAuthGoogleW_Dispose(gAuth);
        CkSocketW_Dispose(tlsSock);
        return;
    }

    // Examine the access token:
    wprintf(L"Access Token: %s\n",CkAuthGoogleW_accessToken(gAuth));


    CkSocketW_Dispose(socket);
    CkDateTimeW_Dispose(dt);
    CkFileAccessW_Dispose(fac);
    CkAuthGoogleW_Dispose(gAuth);
    CkSocketW_Dispose(tlsSock);

    }