Back to Collection Items
Use ChilkatAx-9.5.0-win32.pkg
Procedure Test
Handle hoHttp
Boolean iSuccess
Variant vReq
Handle hoReq
Handle hoJsonParam3
Handle hoJsonParam4
Handle hoJsonParam5
Variant vResp
Handle hoResp
Variant vSbResponseBody
Handle hoSbResponseBody
Handle hoJResp
Integer iRespStatusCode
String sClient_id
String sCode
String sIss
String sData
String sAccept
String sAccept_Encoding
String sCookie
String sHost
String sReferer
String sUser_Agent
String sX_Amzn_Trace_Id
String sJson
String sMethod
String sOrigin
String sUrl
String sTemp1
Boolean bTemp1
// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
Get Create (RefClass(cComChilkatHttp)) To hoHttp
If (Not(IsComObjectCreated(hoHttp))) Begin
Send CreateComObject of hoHttp
End
Get Create (RefClass(cComChilkatHttpRequest)) To hoReq
If (Not(IsComObjectCreated(hoReq))) Begin
Send CreateComObject of hoReq
End
Send ComAddParam To hoReq "scope" "edit"
Send ComAddParam To hoReq "response_type" "code"
Get Create (RefClass(cComChilkatJsonObject)) To hoJsonParam3
If (Not(IsComObjectCreated(hoJsonParam3))) Begin
Send CreateComObject of hoJsonParam3
End
Get ComEmit Of hoJsonParam3 To sTemp1
Send ComAddParam To hoReq "client_id" sTemp1
Get Create (RefClass(cComChilkatJsonObject)) To hoJsonParam4
If (Not(IsComObjectCreated(hoJsonParam4))) Begin
Send CreateComObject of hoJsonParam4
End
Get ComEmit Of hoJsonParam4 To sTemp1
Send ComAddParam To hoReq "csrf" sTemp1
Get Create (RefClass(cComChilkatJsonObject)) To hoJsonParam5
If (Not(IsComObjectCreated(hoJsonParam5))) Begin
Send CreateComObject of hoJsonParam5
End
Get ComEmit Of hoJsonParam5 To sTemp1
Send ComAddParam To hoReq "redirect_uri" sTemp1
Send ComAddParam To hoReq "decision" "allow"
Send ComAddHeader To hoReq "Authorization" "Bearer <access_token>"
Send ComAddHeader To hoReq "Cookie" "{{cookieName}}={{demoSSOToken}}"
Get pvComObject of hoReq to vReq
Get ComPostUrlEncoded Of hoHttp "https://<tenant-name>.forgeblocks.com/am/oauth2/realms/root/realms/alpha/authorize" vReq To vResp
If (IsComObject(vResp)) Begin
Get Create (RefClass(cComChilkatHttpResponse)) To hoResp
Set pvComObject Of hoResp To vResp
End
Get ComLastMethodSuccess Of hoHttp To bTemp1
If (bTemp1 = False) Begin
Get ComLastErrorText Of hoHttp To sTemp1
Showln sTemp1
Procedure_Return
End
Get Create (RefClass(cComChilkatStringBuilder)) To hoSbResponseBody
If (Not(IsComObjectCreated(hoSbResponseBody))) Begin
Send CreateComObject of hoSbResponseBody
End
Get pvComObject of hoSbResponseBody to vSbResponseBody
Get ComGetBodySb Of hoResp vSbResponseBody To iSuccess
Get Create (RefClass(cComChilkatJsonObject)) To hoJResp
If (Not(IsComObjectCreated(hoJResp))) Begin
Send CreateComObject of hoJResp
End
Get pvComObject of hoSbResponseBody to vSbResponseBody
Get ComLoadSb Of hoJResp vSbResponseBody To iSuccess
Set ComEmitCompact Of hoJResp To False
Showln "Response Body:"
Get ComEmit Of hoJResp To sTemp1
Showln sTemp1
Get ComStatusCode Of hoResp To iRespStatusCode
Showln "Response Status Code = " iRespStatusCode
If (iRespStatusCode >= 400) Begin
Showln "Response Header:"
Get ComHeader Of hoResp To sTemp1
Showln sTemp1
Showln "Failed."
Send Destroy of hoResp
Procedure_Return
End
Send Destroy of hoResp
// Sample JSON response:
// (Sample code for parsing the JSON response is shown below)
// {
// "args": {
// "client_id": "forgerockDemoConfidentialClient",
// "code": "TGBSt2LHHruGUU0lAOrrjr08jtA",
// "iss": "http://openam.example.com:8080/openam/oauth2"
// },
// "data": "",
// "files": {},
// "form": {},
// "headers": {
// "Accept": "*/*",
// "Accept-Encoding": "gzip, deflate, br",
// "Cookie": "amlbcookie=01; iPlanetDirectoryPro=sOpI1RvbCgvlQk.*AAJTSQACMDEA.*",
// "Host": "httpbin.org",
// "Referer": "http://openam.example.com:8080/openam/oauth2/realms/root/authorize",
// "User-Agent": "PostmanRuntime/7.26.3",
// "X-Amzn-Trace-Id": "Root=1-5f35302f-6babefe013e7ad28bf1a82f0"
// },
// "json": null,
// "method": "GET",
// "origin": "5.65.200.229",
// "url": "https://httpbin.org/anything?code=TGBSt2LHHruGUU0lAOrrjr08jtA&iss=http:%2F%2Fopenam.example.com:8080%2Fopenam%2Foauth2&client_id=forgerockDemoConfidentialClient"
// }
// Sample code for parsing the JSON response...
// Use this online tool to generate parsing code from sample JSON: Generate JSON Parsing Code
Get ComStringOf Of hoJResp "args.client_id" To sClient_id
Get ComStringOf Of hoJResp "args.code" To sCode
Get ComStringOf Of hoJResp "args.iss" To sIss
Get ComStringOf Of hoJResp "data" To sData
Get ComStringOf Of hoJResp "headers.Accept" To sAccept
Get ComStringOf Of hoJResp "headers.Accept-Encoding" To sAccept_Encoding
Get ComStringOf Of hoJResp "headers.Cookie" To sCookie
Get ComStringOf Of hoJResp "headers.Host" To sHost
Get ComStringOf Of hoJResp "headers.Referer" To sReferer
Get ComStringOf Of hoJResp "headers.User-Agent" To sUser_Agent
Get ComStringOf Of hoJResp "headers.X-Amzn-Trace-Id" To sX_Amzn_Trace_Id
Get ComStringOf Of hoJResp "json" To sJson
Get ComStringOf Of hoJResp "method" To sMethod
Get ComStringOf Of hoJResp "origin" To sOrigin
Get ComStringOf Of hoJResp "url" To sUrl
End_Procedure
Curl Command
curl -X POST
-H "Authorization: Bearer <access_token>"
-H "Cookie: {{cookieName}}={{demoSSOToken}}"
--data-urlencode 'scope=edit'
--data-urlencode 'response_type=code'
--data-urlencode 'client_id={{postmanConfidentialClientId}}'
--data-urlencode 'csrf={{demoSSOToken}}'
--data-urlencode 'redirect_uri={{redirect_uri}}'
--data-urlencode 'decision=allow'
https://<tenant-name>.forgeblocks.com/am/oauth2/realms/root/realms/alpha/authorize
Postman Collection Item JSON
{
"name": "Step 2: Get Authorization Code",
"event": [
{
"listen": "test",
"script": {
"exec": [
"const jsonData = pm.response.json();",
"",
"if(pm.response.code == 200)",
"{",
" if(jsonData.args.code && jsonData.args.code != \"\") {",
" pm.globals.set(\"authorization_code\", jsonData.args.code);",
" }",
"}",
"",
"// TESTS",
"",
"pm.test(\"Follow redirects is enabled in Postman (Status code not 302)\", () => {",
" // If response was 302, ensure Postman is following redirects. ",
" pm.response.to.not.have.status(302);",
"});",
"",
"pm.test(\"Response from httpbin contained `code` argument\", () => {",
" pm.expect(jsonData.args.code).to.be.a(\"string\");",
"});"
],
"type": "text/javascript"
}
}
],
"request": {
"method": "POST",
"header": [
{
"key": "Cookie",
"value": "{{cookieName}}={{demoSSOToken}}",
"type": "text"
}
],
"body": {
"mode": "urlencoded",
"urlencoded": [
{
"key": "scope",
"value": "edit",
"description": "Strings that are presented to the user for approval and included in tokens so that the protected resource may make decisions about what to give access to.",
"type": "text"
},
{
"key": "response_type",
"value": "code",
"description": "Response types the client will support and use.",
"type": "text"
},
{
"key": "client_id",
"value": "{{postmanConfidentialClientId}}",
"description": "The ID of the Confidential OAuth Client.",
"type": "text"
},
{
"key": "csrf",
"value": "{{demoSSOToken}}",
"description": "SSO token of a ForgeRock user, to protect against cross-site request forgery.",
"type": "text"
},
{
"key": "redirect_uri",
"value": "{{redirect_uri}}",
"description": "The complete URI to which client redirects the user if the request is successful.",
"type": "text"
},
{
"key": "decision",
"value": "allow",
"description": "Decision that grants access to the authentication code. When using a browser, the user would consent that the client can access their information. This flow can be used machine-to-machine, by assuming consent, for example between two services provided by the same organization.",
"type": "text"
}
]
},
"url": {
"raw": "{{amUrl}}/oauth2{{realm}}/authorize",
"host": [
"{{amUrl}}"
],
"path": [
"oauth2{{realm}}",
"authorize"
]
},
"description": "Make a call to the authorization server's authorization endpoint, specifying the SSO token of the user in a cookie."
},
"response": [
{
"name": "Example - parameters captured by HttpBin",
"originalRequest": {
"method": "POST",
"header": [
],
"body": {
"mode": "urlencoded",
"urlencoded": [
{
"key": "scope",
"value": "edit",
"description": "Strings that are presented to the user for approval and included in tokens so that the protected resource may make decisions about what to give access to.",
"type": "text"
},
{
"key": "response_type",
"value": "code",
"description": "Response types the client will support and use.",
"type": "text"
},
{
"key": "client_id",
"value": "{{postmanConfidentialClientId}}",
"description": "The ID of the Confidential OAuth Client.",
"type": "text"
},
{
"key": "csrf",
"value": "{{demoSSOToken}}",
"description": "SSO token of a ForgeRock user, to protect against cross-site request forgery.",
"type": "text"
},
{
"key": "redirect_uri",
"value": "{{redirect_uri}}",
"description": "The complete URI to which client redirects the user if the request is successful.",
"type": "text"
},
{
"key": "decision",
"value": "allow",
"description": "Decision that grants access to the authentication code. When using a browser, the user would consent that the client can access their information. This flow can be used machine-to-machine, by assuming consent, for example between two services provided by the same organization.",
"type": "text"
}
]
},
"url": {
"raw": "{{amUrl}}/oauth2{{realm}}/authorize",
"host": [
"{{amUrl}}"
],
"path": [
"oauth2{{realm}}",
"authorize"
]
}
},
"status": "OK",
"code": 200,
"_postman_previewlanguage": "json",
"header": [
{
"key": "Date",
"value": "Thu, 13 Aug 2020 12:21:03 GMT"
},
{
"key": "Content-Type",
"value": "application/json"
},
{
"key": "Content-Length",
"value": "937"
},
{
"key": "Connection",
"value": "keep-alive"
},
{
"key": "Server",
"value": "gunicorn/19.9.0"
},
{
"key": "Access-Control-Allow-Origin",
"value": "*"
},
{
"key": "Access-Control-Allow-Credentials",
"value": "true"
}
],
"cookie": [
],
"body": "{\n \"args\": {\n \"client_id\": \"forgerockDemoConfidentialClient\",\n \"code\": \"TGBSt2LHHruGUU0lAOrrjr08jtA\",\n \"iss\": \"http://openam.example.com:8080/openam/oauth2\"\n },\n \"data\": \"\",\n \"files\": {},\n \"form\": {},\n \"headers\": {\n \"Accept\": \"*/*\",\n \"Accept-Encoding\": \"gzip, deflate, br\",\n \"Cookie\": \"amlbcookie=01; iPlanetDirectoryPro=sOpI1RvbCgvlQk.*AAJTSQACMDEA.*\",\n \"Host\": \"httpbin.org\",\n \"Referer\": \"http://openam.example.com:8080/openam/oauth2/realms/root/authorize\",\n \"User-Agent\": \"PostmanRuntime/7.26.3\",\n \"X-Amzn-Trace-Id\": \"Root=1-5f35302f-6babefe013e7ad28bf1a82f0\"\n },\n \"json\": null,\n \"method\": \"GET\",\n \"origin\": \"5.65.200.229\",\n \"url\": \"https://httpbin.org/anything?code=TGBSt2LHHruGUU0lAOrrjr08jtA&iss=http:%2F%2Fopenam.example.com:8080%2Fopenam%2Foauth2&client_id=forgerockDemoConfidentialClient\"\n}"
}
]
}
