Chilkat Online Tools

DataFlex / ForgeRock Identity Cloud Collection / Step 3: Grant Consent Using the User Code

Back to Collection Items

Use ChilkatAx-win32.pkg

Procedure Test
    Handle hoHttp
    Boolean iSuccess
    Variant vReq
    Handle hoReq
    Handle hoJsonParam2
    Handle hoJsonParam3
    Variant vResp
    Handle hoResp
    String sTemp1
    Integer iTemp1
    Boolean bTemp1

    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    Get Create (RefClass(cComChilkatHttp)) To hoHttp
    If (Not(IsComObjectCreated(hoHttp))) Begin
        Send CreateComObject of hoHttp
    End

    Get Create (RefClass(cComChilkatHttpRequest)) To hoReq
    If (Not(IsComObjectCreated(hoReq))) Begin
        Send CreateComObject of hoReq
    End
    Send ComAddParam To hoReq "decision" "allow"

    Get Create (RefClass(cComChilkatJsonObject)) To hoJsonParam2
    If (Not(IsComObjectCreated(hoJsonParam2))) Begin
        Send CreateComObject of hoJsonParam2
    End
    Get ComEmit Of hoJsonParam2 To sTemp1
    Send ComAddParam To hoReq "csrf" sTemp1

    Get Create (RefClass(cComChilkatJsonObject)) To hoJsonParam3
    If (Not(IsComObjectCreated(hoJsonParam3))) Begin
        Send CreateComObject of hoJsonParam3
    End
    Get ComEmit Of hoJsonParam3 To sTemp1
    Send ComAddParam To hoReq "user_code" sTemp1

    Send ComAddHeader To hoReq "Authorization" "Bearer <access_token>"
    Send ComAddHeader To hoReq "Cookie" "{{demoSSOToken}}"

    Get pvComObject of hoReq to vReq
    Get ComPostUrlEncoded Of hoHttp "https://<tenant-name>.forgeblocks.com/am/oauth2/realms/root/realms/alpha/device/user" vReq To vResp
    If (IsComObject(vResp)) Begin
        Get Create (RefClass(cComChilkatHttpResponse)) To hoResp
        Set pvComObject Of hoResp To vResp
    End
    Get ComLastMethodSuccess Of hoHttp To bTemp1
    If (bTemp1 = False) Begin
        Get ComLastErrorText Of hoHttp To sTemp1
        Showln sTemp1
        Procedure_Return
    End

    Get ComStatusCode Of hoResp To iTemp1
    Showln iTemp1
    Get ComBodyStr Of hoResp To sTemp1
    Showln sTemp1
    Send Destroy of hoResp


End_Procedure

Curl Command

curl -X POST
	-H "Authorization: Bearer <access_token>"
	-H "Cookie: {{demoSSOToken}}"
	--data-urlencode 'decision=allow'
	--data-urlencode 'csrf={{demoSSOToken}}'
	--data-urlencode 'user_code={{user_code}}'
https://<tenant-name>.forgeblocks.com/am/oauth2/realms/root/realms/alpha/device/user

Postman Collection Item JSON

{
  "name": "Step 3: Grant Consent Using the User Code",
  "event": [
    {
      "listen": "test",
      "script": {
        "exec": [
          "pm.test(\"Status code is 200\", () => {",
          "  pm.expect(pm.response.code).to.eql(200);",
          "});",
          "",
          "pm.test(\"Response contains 'done: true'.\",() => {",
          "  pm.expect(pm.response.text()).to.include(\"done: true\");",
          "});"
        ],
        "type": "text/javascript"
      }
    }
  ],
  "request": {
    "method": "POST",
    "header": [
      {
        "key": "Cookie",
        "value": "{{demoSSOToken}}",
        "description": "SSO token to protect against cross-site request forgery.",
        "type": "text"
      }
    ],
    "body": {
      "mode": "urlencoded",
      "urlencoded": [
        {
          "key": "decision",
          "value": "allow",
          "description": "Decision that grants access to the scopes in the request (to the client).",
          "type": "text"
        },
        {
          "key": "csrf",
          "value": "{{demoSSOToken}}",
          "description": "SSO token to protect against cross-site request forgery.",
          "type": "text"
        },
        {
          "key": "user_code",
          "value": "{{user_code}}",
          "description": "The user code for the device.",
          "type": "text"
        }
      ]
    },
    "url": {
      "raw": "{{amUrl}}/oauth2{{realm}}/device/user",
      "host": [
        "{{amUrl}}"
      ],
      "path": [
        "oauth2{{realm}}",
        "device",
        "user"
      ]
    },
    "description": "Grants consent using the user code recieved in the previous call to allow the client device to access resources."
  },
  "response": [
    {
      "name": "Example - page contains \"done: true\"",
      "originalRequest": {
        "method": "POST",
        "header": [
          {
            "key": "Cookie",
            "value": "{{demoSSOToken}}",
            "description": "SSO token to protect against cross-site request forgery.",
            "type": "text"
          }
        ],
        "body": {
          "mode": "urlencoded",
          "urlencoded": [
            {
              "key": "decision",
              "value": "allow",
              "description": "Decision that grants access to the scopes in the request (to the client).",
              "type": "text"
            },
            {
              "key": "csrf",
              "value": "{{demoSSOToken}}",
              "description": "SSO token to protect against cross-site request forgery.",
              "type": "text"
            },
            {
              "key": "user_code",
              "value": "{{user_code}}",
              "description": "The user code for the device.",
              "type": "text"
            }
          ]
        },
        "url": {
          "raw": "{{amUrl}}/oauth2{{realm}}/device/user",
          "host": [
            "{{amUrl}}"
          ],
          "path": [
            "oauth2{{realm}}",
            "device",
            "user"
          ]
        }
      },
      "status": "OK",
      "code": 200,
      "_postman_previewlanguage": "html",
      "header": [
        {
          "key": "X-Frame-Options",
          "value": "SAMEORIGIN"
        },
        {
          "key": "X-Content-Type-Options",
          "value": "nosniff"
        },
        {
          "key": "Content-Type",
          "value": "text/html;charset=UTF-8"
        },
        {
          "key": "Content-Length",
          "value": "969"
        },
        {
          "key": "Date",
          "value": "Thu, 13 Aug 2020 12:19:21 GMT"
        }
      ],
      "cookie": [
      ],
      "body": "<!DOCTYPE html>\n<!--\n  Copyright 2015-2018 ForgeRock AS. All Rights Reserved\n \n  Use of this code requires a commercial software license with ForgeRock AS.\n  or with one of its affiliates. All use shall be exclusively subject\n  to such license between the licensee and ForgeRock AS.\n-->\n<html lang=\"en\">\n    <head>\n        <meta charset=\"utf-8\">\n        <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n        <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n        <meta name=\"description\" content=\"OAuth2 Authorization\">\n        <title>OAuth2 Authorization Server</title>\n    </head>\n    <body style=\"display:none\">\n        <div id=\"wrapper\">Loading...</div>\n        <footer id=\"footer\" class=\"footer\"></footer>\n        <script type=\"text/javascript\">\n  pageData = {\n      locale: \"en_GB\",\n      baseUrl : \"http://openam.example.com:8080/openam/XUI/\",\n      realm : \"\\//XUI\",\n      done: true\n  };\n</script>\n        <script src=\"http://openam.example.com:8080/openam/XUI/main-device.js\"></script>\n    </body>\n</html>"
    }
  ]
}