(Unicode C++) Hungary NAV Token Exchange

Demonstrates the tokenExchange request for the Hungarian NAV Online Invoicing System REST API v2.0.

Note: This example requires Chilkat v9.5.0.83 or greater.

For more information, see https://onlineszamla.nav.gov.hu/api/files/container/download/Online%20Szamla_Interfesz%20specifik%C3%A1ci%C3%B3_EN_v2.0.pdf

Chilkat C/C++ Library Downloads
MS Visual C/C++ Linux/CentOS C/C++ Alpine Linux C/C++ MAC OS X C/C++	armhf/aarch64 C/C++ C++ Builder iOS C/C++ Android C/C++	Solaris C/C++ MinGW C/C++

#include <CkCrypt2W.h>
#include <CkDateTimeW.h>
#include <CkPrngW.h>
#include <CkStringBuilderW.h>
#include <CkXmlW.h>
#include <CkHttpW.h>
#include <CkHttpResponseW.h>

void ChilkatSample(void)
    {
    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // Build the following XML:

    // Use this online tool to generate code from sample XML: 
    // Generate Code to Create XML

    // <?xml version="1.0" encoding="UTF-8"?>
    // <TokenExchangeRequest xmlns="http://schemas.nav.gov.hu/OSA/2.0/api">
    // 	<header>
    // 		<requestId>RID896801578348</requestId>
    // 		<timestamp>2019-09-11T10:55:31.440Z</timestamp>
    // 		<requestVersion>2.0</requestVersion>
    // 		<headerVersion>1.0</headerVersion>
    // 	</header>
    // 	<user>
    // 		<login>lwilsmn0uqdxe6u</login>
    // 		<passwordHash>2F43840A882CFDB7DB0FEC07D419D030D864B47B6B541DC280EF81B937B7A176E33C052B0D26638CC18A7A2C08D8D311733078A774BF43F6CA57FE8CD74DC28E</passwordHash>
    // 		<taxNumber>11111111</taxNumber>
    // 		<requestSignature>B4B5E0F197BFFD3DF69BCC98D3BE775F65FD5445EEF95C9D6B6C59425F2B81C4F6DA1FD563B0C7E7D98AF1E1725E5C63C2803B5D3A93D1C02ED354AC92F2CC94</requestSignature>
    // 		<!--<signKey>ac-ac3a-7f661bff7d342N43CYX4U9FG</signKey>-->
    // 	</user>
    // 	<software>
    // 		<softwareId>123456789123456789</softwareId>
    // 		<softwareName>string</softwareName>
    // 		<softwareOperation>LOCAL_SOFTWARE</softwareOperation>
    // 		<softwareMainVersion>string</softwareMainVersion>
    // 		<softwareDevName>string</softwareDevName>
    // 		<softwareDevContact>string</softwareDevContact>
    // 		<softwareDevCountryCode>HU</softwareDevCountryCode>
    // 		<softwareDevTaxNumber>string</softwareDevTaxNumber>
    // 	</software>
    // </TokenExchangeRequest>

    bool success;
    CkCrypt2W crypt;

    CkDateTimeW dtNow;
    dtNow.SetFromCurrentSystemTime();
    wprintf(L"%s\n",dtNow.getAsTimestamp(false));

    // The hash algorithm for the password is SHA512 (not SHA3-512).
    crypt.put_HashAlgorithm(L"sha512");
    crypt.put_EncodingMode(L"hex");
    const wchar_t *myPassword = L"my-password";
    const wchar_t *passwordHash = crypt.hashStringENC(myPassword);

    // Generate a random request ID like "RID215118906689"
    CkPrngW prng;
    CkStringBuilderW sbRequestId;
    sbRequestId.Append(L"RID");
    sbRequestId.Append(prng.randomString(12,true,false,false));
    wprintf(L"generated requestId = %s\n",sbRequestId.getAsString());

    // Calculate the requestSignature
    crypt.put_HashAlgorithm(L"sha3-512");
    const wchar_t *signatureKey = L"ce-8f5e-215119fa7dd621DLMRHRLH2S";

    CkStringBuilderW sbFinalHashBase;

    // First append the timestamp because we are going to remove certain chars/parts.
    sbFinalHashBase.Append(dtNow.getAsTimestamp(false));
    int numReplaced = sbFinalHashBase.Replace(L"Z",L"");
    numReplaced = sbFinalHashBase.Replace(L"-",L"");
    numReplaced = sbFinalHashBase.Replace(L":",L"");
    numReplaced = sbFinalHashBase.Replace(L"T",L"");

    // Prepend the requestId and append the signatureKey
    sbFinalHashBase.Prepend(sbRequestId.getAsString());
    sbFinalHashBase.Append(signatureKey);

    const wchar_t *requestSignature = crypt.hashStringENC(sbFinalHashBase.getAsString());

    CkXmlW xml;
    xml.put_Tag(L"TokenExchangeRequest");
    xml.AddAttribute(L"xmlns",L"http://schemas.nav.gov.hu/OSA/2.0/api");
    xml.UpdateChildContent(L"header|requestId",sbRequestId.getAsString());
    xml.UpdateChildContent(L"header|timestamp",dtNow.getAsTimestamp(false));
    xml.UpdateChildContent(L"header|requestVersion",L"2.0");
    xml.UpdateChildContent(L"header|headerVersion",L"1.0");
    xml.UpdateChildContent(L"user|login",L"lwilsmn0uqdxe6u");
    xml.UpdateChildContent(L"user|passwordHash",passwordHash);
    xml.UpdateChildContent(L"user|taxNumber",L"11111111");
    xml.UpdateChildContent(L"user|requestSignature",requestSignature);
    xml.UpdateChildContent(L"software|softwareId",L"123456789123456789");
    xml.UpdateChildContent(L"software|softwareName",L"string");
    xml.UpdateChildContent(L"software|softwareOperation",L"LOCAL_SOFTWARE");
    xml.UpdateChildContent(L"software|softwareMainVersion",L"string");
    xml.UpdateChildContent(L"software|softwareDevName",L"string");
    xml.UpdateChildContent(L"software|softwareDevContact",L"string");
    xml.UpdateChildContent(L"software|softwareDevCountryCode",L"HU");
    xml.UpdateChildContent(L"software|softwareDevTaxNumber",L"string");

    // POST the XML to https://api-test.onlineszamla.nav.gov.hu/invoiceService/v2/tokenExchange
    CkHttpW http;
    http.put_Accept(L"application/xml");
    http.SetRequestHeader(L"Content-Type",L"application/xml");
    const wchar_t *endpoint = L"https://api-test.onlineszamla.nav.gov.hu/invoiceService/v2/tokenExchange";
    CkHttpResponseW *resp = http.PostXml(endpoint,xml.getXml(),L"utf-8");
    if (http.get_LastMethodSuccess() == false) {
        wprintf(L"%s\n",http.lastErrorText());
        return;
    }

    wprintf(L"Response status code = %d\n",resp->get_StatusCode());

    CkXmlW respXml;
    respXml.LoadXml(resp->bodyStr());
    wprintf(L"Response body:\n");
    wprintf(L"%s\n",respXml.getXml());

    // Save our exchange token to a file to be used for subsequent requests.
    respXml.SaveXml(L"qa_data/tokens/nav_exchange_token.xml");

    delete resp;

    // The result looks like this:

    // <?xml version="1.0" encoding="UTF-8" standalone="yes"?>
    // <TokenExchangeResponse xmlns="http://schemas.nav.gov.hu/OSA/2.0/api" xmlns:ns2="http://schemas.nav.gov.hu/OSA/2.0/data">
    //     <header>
    //         <requestId>RID789246611489</requestId>
    //         <timestamp>2020-03-25T14:14:36Z</timestamp>
    //         <requestVersion>2.0</requestVersion>
    //         <headerVersion>1.0</headerVersion>
    //     </header>
    //     <result>
    //         <funcCode>OK</funcCode>
    //     </result>
    //     <software>
    //         <softwareId>123456789123456789</softwareId>
    //         <softwareName>string</softwareName>
    //         <softwareOperation>LOCAL_SOFTWARE</softwareOperation>
    //         <softwareMainVersion>string</softwareMainVersion>
    //         <softwareDevName>string</softwareDevName>
    //         <softwareDevContact>string</softwareDevContact>
    //         <softwareDevCountryCode>HU</softwareDevCountryCode>
    //         <softwareDevTaxNumber>string</softwareDevTaxNumber>
    //     </software>
    //     <encodedExchangeToken>2lR5v57Tl ... 9n4tIWCYgjKQ==</encodedExchangeToken>
    //     <tokenValidityFrom>2020-03-25T15:14:36.987+01:00</tokenValidityFrom>
    //     <tokenValidityTo>2020-03-25T15:19:36.987+01:00</tokenValidityTo>
    // </TokenExchangeResponse>

    // Use this online tool to generate parsing code from sample XML: 
    // Generate Parsing Code from XML

    // Chilkat functions returning "const char *" return a pointer to temporary internal memory owned and managed by Chilkat.
    // See this example explaining how this memory should be used: const char * functions.

    const wchar_t *TokenExchangeResponse_xmlns = respXml.getAttrValue(L"xmlns");
    const wchar_t *TokenExchangeResponse_xmlns_ns2 = respXml.getAttrValue(L"xmlns:ns2");
    const wchar_t *requestId = respXml.getChildContent(L"header|requestId");
    const wchar_t *timestamp = respXml.getChildContent(L"header|timestamp");
    const wchar_t *requestVersion = respXml.getChildContent(L"header|requestVersion");
    const wchar_t *headerVersion = respXml.getChildContent(L"header|headerVersion");
    const wchar_t *funcCode = respXml.getChildContent(L"result|funcCode");
    const wchar_t *softwareId = respXml.getChildContent(L"software|softwareId");
    const wchar_t *softwareName = respXml.getChildContent(L"software|softwareName");
    const wchar_t *softwareOperation = respXml.getChildContent(L"software|softwareOperation");
    const wchar_t *softwareMainVersion = respXml.getChildContent(L"software|softwareMainVersion");
    const wchar_t *softwareDevName = respXml.getChildContent(L"software|softwareDevName");
    const wchar_t *softwareDevContact = respXml.getChildContent(L"software|softwareDevContact");
    const wchar_t *softwareDevCountryCode = respXml.getChildContent(L"software|softwareDevCountryCode");
    const wchar_t *softwareDevTaxNumber = respXml.getChildContent(L"software|softwareDevTaxNumber");
    const wchar_t *encodedExchangeToken = respXml.getChildContent(L"encodedExchangeToken");
    const wchar_t *tokenValidityFrom = respXml.getChildContent(L"tokenValidityFrom");
    const wchar_t *tokenValidityTo = respXml.getChildContent(L"tokenValidityTo");
    }