Sample code for 30+ languages & platforms
Visual Basic 6.0

Quickbooks OAuth1 Authorization (3-legged)

See more QuickBooks Examples

Demonstrates 3-legged OAuth1 authorization for Quickbooks.

Chilkat Visual Basic 6.0 Downloads

Visual Basic 6.0
Dim success As Long
success = 0

Dim consumerKey As String
consumerKey = "QUICKBOOKS_CONSUMER_KEY"
Dim consumerSecret As String
consumerSecret = "QUICKBOOKS_CONSUMER_SECRET"

Dim requestTokenUrl As String
requestTokenUrl = "https://oauth.intuit.com/oauth/v1/get_request_token"
Dim authorizeUrl As String
authorizeUrl = "https://appcenter.intuit.com/Connect/Begin"
Dim accessTokenUrl As String
accessTokenUrl = "https://oauth.intuit.com/oauth/v1/get_access_token"

' The port number is picked at random. It's some unused port that won't likely conflict with anything else..
Dim callbackUrl As String
callbackUrl = "http://localhost:3017/"
Dim callbackLocalPort As Long
callbackLocalPort = 3017

' The 1st step in 3-legged OAuth1.0a is to send a POST to the request token URL to obtain an OAuth Request Token
Dim http As New ChilkatHttp

http.OAuth1 = 1
http.OAuthConsumerKey = consumerKey
http.OAuthConsumerSecret = consumerSecret
http.OAuthCallback = callbackUrl

Dim req As New ChilkatHttpRequest
req.HttpVerb = "POST"
req.ContentType = "application/x-www-form-urlencoded"

Dim resp As New ChilkatHttpResponse
success = http.HttpReq(requestTokenUrl,req,resp)
If (success = 0) Then
    Debug.Print http.LastErrorText
    Exit Sub
End If

If (resp.StatusCode >= 400) Then
    Debug.Print "Error response status code = " & resp.StatusCode
    Debug.Print resp.BodyStr
    Exit Sub
End If

' If successful, the resp.BodyStr contains this:  
' oauth_token=-Wa_KwAAAAAAxfEPAAABV8Qar4Q&oauth_token_secret=OfHY4tZBX2HK4f7yIw76WYdvnl99MVGB&oauth_callback_confirmed=true
Debug.Print resp.BodyStr

Dim hashTab1 As New ChilkatHashtable
success = hashTab1.AddQueryParams(resp.BodyStr)

Dim requestToken As String
requestToken = hashTab1.LookupStr("oauth_token")
Dim requestTokenSecret As String
requestTokenSecret = hashTab1.LookupStr("oauth_token_secret")
http.OAuthTokenSecret = requestTokenSecret

Debug.Print "oauth_token = " & requestToken
Debug.Print "oauth_token_secret = " & requestTokenSecret

' ---------------------------------------------------------------------------
' The next step is to form a URL to send to the AuthorizeUrl
' This is an HTTP GET that we load into a popup browser.
Dim sbUrlForBrowser As New ChilkatStringBuilder
success = sbUrlForBrowser.Append(authorizeUrl)
success = sbUrlForBrowser.Append("?oauth_token=")
success = sbUrlForBrowser.Append(requestToken)
Dim url As String
url = sbUrlForBrowser.GetAsString()

' When the urlForBrowser is loaded into a browser, the response from Quickbooks will redirect back to localhost:3017
' We'll need to start a socket that is listening on port 3017 for the callback from the browser.
Dim listenSock As New ChilkatSocket

Dim backLog As Long
backLog = 5
success = listenSock.BindAndListen(callbackLocalPort,backLog)
If (success = 0) Then
    Debug.Print listenSock.LastErrorText
    Exit Sub
End If

' Wait for the browser's connection in a background thread.
' (We'll send load the URL into the browser following this..)
' Wait a max of 60 seconds before giving up.
Dim sock As New ChilkatSocket
Dim maxWaitMs As Long
maxWaitMs = 60000
Dim task As ChilkatTask
Set task = listenSock.AcceptNextAsync(maxWaitMs,sock)
success = task.Run()

' Launch the system's default browser navigated to the URL.
Dim oauth2 As New ChilkatOAuth2
success = oauth2.LaunchBrowser(url)
If (success = 0) Then
    Debug.Print oauth2.LastErrorText
    Exit Sub
End If

' Wait for the listenSock's task to complete.
success = task.Wait(maxWaitMs)
If (Not success Or (task.StatusInt <> 7) Or (task.TaskSuccess <> 1)) Then
    If (Not success) Then
        ' The task.LastErrorText applies to the Wait method call.
        Debug.Print task.LastErrorText
    Else
        ' The ResultErrorText applies to the underlying task method call (i.e. the AcceptNextConnection)
        Debug.Print task.Status
        Debug.Print task.ResultErrorText
    End If

    Exit Sub
End If

' If we get to this point, the connection from the browser arrived and was accepted.

' We no longer need the listen socket...
' Close it so that it's no longer listening on port 3017.
success = listenSock.Close(10)

' Read the start line of the request..
Dim startLine As String
startLine = sock.ReceiveUntilMatch(vbCrLf)
If (sock.LastMethodSuccess = 0) Then
    Debug.Print sock.LastErrorText
    Exit Sub
End If

' Read the request header.
Dim requestHeader As String
requestHeader = sock.ReceiveUntilMatch(vbCrLf & vbCrLf)
If (sock.LastMethodSuccess = 0) Then
    Debug.Print sock.LastErrorText
    Exit Sub
End If

' The browser SHOULD be sending us a GET request, and therefore there is no body to the request.
' Once the request header is received, we have all of it.
' We can now send our HTTP response.
Dim sbResponseHtml As New ChilkatStringBuilder
success = sbResponseHtml.Append("<html><body><p>Chilkat thanks you!</b></body</html>")

Dim sbResponse As New ChilkatStringBuilder
success = sbResponse.Append("HTTP/1.1 200 OK" & vbCrLf)
success = sbResponse.Append("Content-Length: ")
success = sbResponse.AppendInt(sbResponseHtml.Length)
success = sbResponse.Append(vbCrLf)
success = sbResponse.Append("Content-Type: text/html" & vbCrLf)
success = sbResponse.Append(vbCrLf)
success = sbResponse.AppendSb(sbResponseHtml)

success = sock.SendString(sbResponse.GetAsString())
success = sock.Close(50)

' The information we need is in the startLine.
' For example, the startLine will look like this:
'  GET /?oauth_token=abcdRQAAZZAAxfBBAAABVabcd_k&oauth_verifier=9rdOq5abcdCe6cn8M3jabcdj3Eabcd HTTP/1.1
Dim sbStartLine As New ChilkatStringBuilder
success = sbStartLine.Append(startLine)
Dim numReplacements As Long
numReplacements = sbStartLine.Replace("GET /?","")
numReplacements = sbStartLine.Replace(" HTTP/1.1","")
success = sbStartLine.Trim()

' oauth_token=qyprdP04IrTDIXtP1HRZz0geQdjXHVlGDxXPexlXZsjZNRcY&oauth_verifier=arx5pj5&realmId=193514465596199&dataSource=QBO
Debug.Print "startline: " & sbStartLine.GetAsString()

hashTab1.Clear 
success = hashTab1.AddQueryParams(sbStartLine.GetAsString())

requestToken = hashTab1.LookupStr("oauth_token")
Dim authVerifier As String
authVerifier = hashTab1.LookupStr("oauth_verifier")

' ------------------------------------------------------------------------------
' Finally , we must exchange the OAuth Request Token for an OAuth Access Token.

http.OAuthToken = requestToken
http.OAuthVerifier = authVerifier

req.HttpVerb = "POST"
req.ContentType = "application/x-www-form-urlencoded"

success = http.HttpReq(accessTokenUrl,req,resp)
If (success = 0) Then
    Debug.Print http.LastErrorText
    Exit Sub
End If

' Make sure a successful response was received.
If (resp.StatusCode <> 200) Then
    Debug.Print resp.StatusLine
    Debug.Print resp.Header
    Debug.Print resp.BodyStr
    Exit Sub
End If

' If successful, the resp.BodyStr contains something like this:
' oauth_token=12347455-ffffrrlaBdCjbdGfyjZabcdb5APNtuTPNabcdEpp&oauth_token_secret=RxxxxJ8mTzUhwES4xxxxuJyFWDN8ZfHmrabcddh88LmWE
Debug.Print resp.BodyStr

Dim hashTab2 As New ChilkatHashtable
success = hashTab2.AddQueryParams(resp.BodyStr)

Dim accessToken As String
accessToken = hashTab2.LookupStr("oauth_token")
Dim accessTokenSecret As String
accessTokenSecret = hashTab2.LookupStr("oauth_token_secret")

' The access token + secret is what should be saved and used for
' subsequent REST API calls.
Debug.Print "Access Token = " & accessToken
Debug.Print "Access Token Secret = " & accessTokenSecret

' Save this access token for future calls.
Dim json As New ChilkatJsonObject
success = json.AppendString("oauth_token",accessToken)
success = json.AppendString("oauth_token_secret",accessTokenSecret)

' Also save the realmId and dataSource from hashTab1.
Dim realmId As String
realmId = hashTab1.LookupStr("realmId")
Debug.Print "realmId = " & realmId
Dim dataSource As String
dataSource = hashTab1.LookupStr("dataSource")
Debug.Print "dataSource = " & dataSource

success = json.AppendString("realmId",realmId)
success = json.AppendString("dataSource",dataSource)

Dim fac As New CkFileAccess
success = fac.WriteEntireTextFile("qa_data/tokens/quickbooks.json",json.Emit(),"utf-8",0)

Debug.Print "Success."