Unicode C
Unicode C
RSAP Union API - Get OAuth2 Access Token
See more _Miscellaneous_ Examples
Demonstrates how to get an OAuth2 access token for the RSAP Union API. Note: This uses the client credentials flow, which does NOT require an interactive engagement using a browser.Chilkat Unicode C Downloads
#include <C_CkHttpW.h>
#include <C_CkJsonObjectW.h>
#include <C_CkCertW.h>
#include <C_CkPrivateKeyW.h>
#include <C_CkHttpResponseW.h>
#include <C_CkStringBuilderW.h>
void ChilkatSample(void)
{
BOOL success;
HCkHttpW http;
HCkJsonObjectW json;
HCkCertW cert;
HCkPrivateKeyW privKey;
HCkHttpResponseW resp;
HCkStringBuilderW sbResponseBody;
HCkJsonObjectW jResp;
int respStatusCode;
success = FALSE;
// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
http = CkHttpW_Create();
// The following JSON is sent in the request body.
// {
// "grant_type": "client_credentials",
// "client_id": 1234,
// "client_secret": "23456abcde"
// }
json = CkJsonObjectW_Create();
CkJsonObjectW_UpdateString(json,L"grant_type",L"client_credentials");
CkJsonObjectW_UpdateInt(json,L"client_id",1234);
CkJsonObjectW_UpdateString(json,L"client_secret",L"23456abcde");
CkHttpW_SetRequestHeader(http,L"Content-type",L"application/json");
// Add the client certificate TLS authentication.
cert = CkCertW_Create();
success = CkCertW_LoadFromFile(cert,L"qa_data/certs_and_keys/union_client_certificate.crt");
if (success == FALSE) {
wprintf(L"%s\n",CkCertW_lastErrorText(cert));
CkHttpW_Dispose(http);
CkJsonObjectW_Dispose(json);
CkCertW_Dispose(cert);
return;
}
privKey = CkPrivateKeyW_Create();
success = CkPrivateKeyW_LoadAnyFormatFile(privKey,L"qa_data/certs_and_keys/union_client_certificate.nopass.key",L"");
if (success == FALSE) {
wprintf(L"%s\n",CkPrivateKeyW_lastErrorText(privKey));
CkHttpW_Dispose(http);
CkJsonObjectW_Dispose(json);
CkCertW_Dispose(cert);
CkPrivateKeyW_Dispose(privKey);
return;
}
// Associate the private key with the cert.
// This will fail if the private key is not actually the correct one that corresponds to the public key stored within the cert.
success = CkCertW_SetPrivateKey(cert,privKey);
if (success == FALSE) {
wprintf(L"%s\n",CkCertW_lastErrorText(cert));
CkHttpW_Dispose(http);
CkJsonObjectW_Dispose(json);
CkCertW_Dispose(cert);
CkPrivateKeyW_Dispose(privKey);
return;
}
// Tell HTTP to use the cert for client TLS certificate authentication.
success = CkHttpW_SetSslClientCert(http,cert);
if (success == FALSE) {
wprintf(L"%s\n",CkHttpW_lastErrorText(http));
CkHttpW_Dispose(http);
CkJsonObjectW_Dispose(json);
CkCertW_Dispose(cert);
CkPrivateKeyW_Dispose(privKey);
return;
}
resp = CkHttpResponseW_Create();
success = CkHttpW_HttpJson(http,L"POST",L"https://api-test.rsap.ca/oauth/token",json,L"application/json",resp);
if (success == FALSE) {
wprintf(L"%s\n",CkHttpW_lastErrorText(http));
CkHttpW_Dispose(http);
CkJsonObjectW_Dispose(json);
CkCertW_Dispose(cert);
CkPrivateKeyW_Dispose(privKey);
CkHttpResponseW_Dispose(resp);
return;
}
sbResponseBody = CkStringBuilderW_Create();
CkHttpResponseW_GetBodySb(resp,sbResponseBody);
jResp = CkJsonObjectW_Create();
CkJsonObjectW_LoadSb(jResp,sbResponseBody);
CkJsonObjectW_putEmitCompact(jResp,FALSE);
wprintf(L"Response Body:\n");
wprintf(L"%s\n",CkJsonObjectW_emit(jResp));
respStatusCode = CkHttpResponseW_getStatusCode(resp);
wprintf(L"Response Status Code = %d\n",respStatusCode);
if (respStatusCode >= 400) {
wprintf(L"Response Header:\n");
wprintf(L"%s\n",CkHttpResponseW_header(resp));
wprintf(L"Failed.\n");
CkHttpW_Dispose(http);
CkJsonObjectW_Dispose(json);
CkCertW_Dispose(cert);
CkPrivateKeyW_Dispose(privKey);
CkHttpResponseW_Dispose(resp);
CkStringBuilderW_Dispose(sbResponseBody);
CkJsonObjectW_Dispose(jResp);
return;
}
// Sample JSON response:
// (Sample code for parsing the JSON response is shown below)
// {
// "token_type": "Bearer",
// "expires_in": 3600,
// "access_token": "eyJ0eXAi...LnE"
// }
// This token expires in 1 hour. Your application could re-use the same token for up to an hour,
// or it can simply get a new access token before each request (if you're not doing too many requests).
success = CkJsonObjectW_WriteFile(jResp,L"qa_data/tokens/rsapToken.json");
CkHttpW_Dispose(http);
CkJsonObjectW_Dispose(json);
CkCertW_Dispose(cert);
CkPrivateKeyW_Dispose(privKey);
CkHttpResponseW_Dispose(resp);
CkStringBuilderW_Dispose(sbResponseBody);
CkJsonObjectW_Dispose(jResp);
}