(Unicode C) RSAP Union API - Get OAuth2 Access Token

Demonstrates how to get an OAuth2 access token for the RSAP Union API. Note: This uses the client credentials flow, which does NOT require an interactive engagement using a browser.

For more information, see https://app.swaggerhub.com/apis-docs/pderas/RSAP/2.0.1#/Authentication/getOauthToken

Chilkat C/C++ Library Downloads
MS Visual C/C++ Linux/CentOS C/C++ Alpine Linux C/C++ MAC OS X C/C++	armhf/aarch64 C/C++ C++ Builder iOS C/C++ Android C/C++	Solaris C/C++ MinGW C/C++

#include <C_CkHttpW.h>
#include <C_CkJsonObjectW.h>
#include <C_CkCertW.h>
#include <C_CkPrivateKeyW.h>
#include <C_CkHttpResponseW.h>
#include <C_CkStringBuilderW.h>

void ChilkatSample(void)
    {
    HCkHttpW http;
    BOOL success;
    HCkJsonObjectW json;
    HCkCertW cert;
    HCkPrivateKeyW privKey;
    HCkHttpResponseW resp;
    HCkStringBuilderW sbResponseBody;
    HCkJsonObjectW jResp;
    int respStatusCode;

    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    http = CkHttpW_Create();

    // The following JSON is sent in the request body.

    // {
    //   "grant_type": "client_credentials",
    //   "client_id": 1234,
    //   "client_secret": "23456abcde"
    // }

    json = CkJsonObjectW_Create();
    CkJsonObjectW_UpdateString(json,L"grant_type",L"client_credentials");
    CkJsonObjectW_UpdateInt(json,L"client_id",1234);
    CkJsonObjectW_UpdateString(json,L"client_secret",L"23456abcde");

    CkHttpW_SetRequestHeader(http,L"Content-type",L"application/json");

    // Add the client certificate TLS authentication.
    cert = CkCertW_Create();
    success = CkCertW_LoadFromFile(cert,L"qa_data/certs_and_keys/union_client_certificate.crt");
    if (success == FALSE) {
        wprintf(L"%s\n",CkCertW_lastErrorText(cert));
        CkHttpW_Dispose(http);
        CkJsonObjectW_Dispose(json);
        CkCertW_Dispose(cert);
        return;
    }

    privKey = CkPrivateKeyW_Create();
    success = CkPrivateKeyW_LoadAnyFormatFile(privKey,L"qa_data/certs_and_keys/union_client_certificate.nopass.key",L"");
    if (success == FALSE) {
        wprintf(L"%s\n",CkPrivateKeyW_lastErrorText(privKey));
        CkHttpW_Dispose(http);
        CkJsonObjectW_Dispose(json);
        CkCertW_Dispose(cert);
        CkPrivateKeyW_Dispose(privKey);
        return;
    }

    // Associate the private key with the cert.
    // This will fail if the private key is not actually the correct one that corresponds to the public key stored within the cert.
    success = CkCertW_SetPrivateKey(cert,privKey);
    if (success == FALSE) {
        wprintf(L"%s\n",CkCertW_lastErrorText(cert));
        CkHttpW_Dispose(http);
        CkJsonObjectW_Dispose(json);
        CkCertW_Dispose(cert);
        CkPrivateKeyW_Dispose(privKey);
        return;
    }

    // Tell HTTP to use the cert for client TLS certificate authentication.
    success = CkHttpW_SetSslClientCert(http,cert);
    if (success == FALSE) {
        wprintf(L"%s\n",CkHttpW_lastErrorText(http));
        CkHttpW_Dispose(http);
        CkJsonObjectW_Dispose(json);
        CkCertW_Dispose(cert);
        CkPrivateKeyW_Dispose(privKey);
        return;
    }

    resp = CkHttpW_PostJson3(http,L"https://api-test.rsap.ca/oauth/token",L"application/json",json);
    if (CkHttpW_getLastMethodSuccess(http) == FALSE) {
        wprintf(L"%s\n",CkHttpW_lastErrorText(http));
        CkHttpW_Dispose(http);
        CkJsonObjectW_Dispose(json);
        CkCertW_Dispose(cert);
        CkPrivateKeyW_Dispose(privKey);
        return;
    }

    sbResponseBody = CkStringBuilderW_Create();
    CkHttpResponseW_GetBodySb(resp,sbResponseBody);
    jResp = CkJsonObjectW_Create();
    CkJsonObjectW_LoadSb(jResp,sbResponseBody);
    CkJsonObjectW_putEmitCompact(jResp,FALSE);

    wprintf(L"Response Body:\n");
    wprintf(L"%s\n",CkJsonObjectW_emit(jResp));

    respStatusCode = CkHttpResponseW_getStatusCode(resp);
    wprintf(L"Response Status Code = %d\n",respStatusCode);
    if (respStatusCode >= 400) {
        wprintf(L"Response Header:\n");
        wprintf(L"%s\n",CkHttpResponseW_header(resp));
        wprintf(L"Failed.\n");
        CkHttpResponseW_Dispose(resp);
        CkHttpW_Dispose(http);
        CkJsonObjectW_Dispose(json);
        CkCertW_Dispose(cert);
        CkPrivateKeyW_Dispose(privKey);
        CkStringBuilderW_Dispose(sbResponseBody);
        CkJsonObjectW_Dispose(jResp);
        return;
    }

    CkHttpResponseW_Dispose(resp);

    // Sample JSON response:
    // (Sample code for parsing the JSON response is shown below)

    // {
    //   "token_type": "Bearer",
    //   "expires_in": 3600,
    //   "access_token": "eyJ0eXAi...LnE"
    // }

    // This token expires in 1 hour.  Your application could re-use the same token for up to an hour,
    // or it can simply get a new access token before each request (if you're not doing too many requests).
    success = CkJsonObjectW_WriteFile(jResp,L"qa_data/tokens/rsapToken.json");


    CkHttpW_Dispose(http);
    CkJsonObjectW_Dispose(json);
    CkCertW_Dispose(cert);
    CkPrivateKeyW_Dispose(privKey);
    CkStringBuilderW_Dispose(sbResponseBody);
    CkJsonObjectW_Dispose(jResp);

    }