Back to Collection Items
Use ChilkatAx-win32.pkg
Procedure Test
Handle hoHttp
Boolean iSuccess
Variant vReq
Handle hoReq
Handle hoJsonParam2
Handle hoJsonParam3
Handle hoJsonParam4
Variant vResp
Handle hoResp
Variant vSbResponseBody
Handle hoSbResponseBody
Handle hoJResp
Integer iRespStatusCode
String sAccess_token
String sRefresh_token
String sScope
String sToken_type
Integer iExpires_in
String sTemp1
Boolean bTemp1
// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
Get Create (RefClass(cComChilkatHttp)) To hoHttp
If (Not(IsComObjectCreated(hoHttp))) Begin
Send CreateComObject of hoHttp
End
Get Create (RefClass(cComChilkatHttpRequest)) To hoReq
If (Not(IsComObjectCreated(hoReq))) Begin
Send CreateComObject of hoReq
End
Send ComAddParam To hoReq "grant_type" "refresh_token"
Get Create (RefClass(cComChilkatJsonObject)) To hoJsonParam2
If (Not(IsComObjectCreated(hoJsonParam2))) Begin
Send CreateComObject of hoJsonParam2
End
Get ComEmit Of hoJsonParam2 To sTemp1
Send ComAddParam To hoReq "refresh_token" sTemp1
Get Create (RefClass(cComChilkatJsonObject)) To hoJsonParam3
If (Not(IsComObjectCreated(hoJsonParam3))) Begin
Send CreateComObject of hoJsonParam3
End
Get ComEmit Of hoJsonParam3 To sTemp1
Send ComAddParam To hoReq "client_id" sTemp1
Get Create (RefClass(cComChilkatJsonObject)) To hoJsonParam4
If (Not(IsComObjectCreated(hoJsonParam4))) Begin
Send CreateComObject of hoJsonParam4
End
Get ComEmit Of hoJsonParam4 To sTemp1
Send ComAddParam To hoReq "client_secret" sTemp1
Send ComAddParam To hoReq "scope" "edit"
Send ComAddHeader To hoReq "Authorization" "Bearer <access_token>"
Get pvComObject of hoReq to vReq
Get ComPostUrlEncoded Of hoHttp "https://<tenant-name>.forgeblocks.com/am/oauth2/realms/root/realms/alpha/access_token" vReq To vResp
If (IsComObject(vResp)) Begin
Get Create (RefClass(cComChilkatHttpResponse)) To hoResp
Set pvComObject Of hoResp To vResp
End
Get ComLastMethodSuccess Of hoHttp To bTemp1
If (bTemp1 = False) Begin
Get ComLastErrorText Of hoHttp To sTemp1
Showln sTemp1
Procedure_Return
End
Get Create (RefClass(cComChilkatStringBuilder)) To hoSbResponseBody
If (Not(IsComObjectCreated(hoSbResponseBody))) Begin
Send CreateComObject of hoSbResponseBody
End
Get pvComObject of hoSbResponseBody to vSbResponseBody
Get ComGetBodySb Of hoResp vSbResponseBody To iSuccess
Get Create (RefClass(cComChilkatJsonObject)) To hoJResp
If (Not(IsComObjectCreated(hoJResp))) Begin
Send CreateComObject of hoJResp
End
Get pvComObject of hoSbResponseBody to vSbResponseBody
Get ComLoadSb Of hoJResp vSbResponseBody To iSuccess
Set ComEmitCompact Of hoJResp To False
Showln "Response Body:"
Get ComEmit Of hoJResp To sTemp1
Showln sTemp1
Get ComStatusCode Of hoResp To iRespStatusCode
Showln "Response Status Code = " iRespStatusCode
If (iRespStatusCode >= 400) Begin
Showln "Response Header:"
Get ComHeader Of hoResp To sTemp1
Showln sTemp1
Showln "Failed."
Send Destroy of hoResp
Procedure_Return
End
Send Destroy of hoResp
// Sample JSON response:
// (Sample code for parsing the JSON response is shown below)
// {
// "access_token": "eyJ0eXAiOiJKV1.cyI6Imh0dHA6Ly9vcGVuYW0uZ",
// "refresh_token": "eyJ0CJhbGciOiJ.NzgxNCIsImlzcyI6Imh0dH",
// "scope": "edit",
// "token_type": "Bearer",
// "expires_in": 3599
// }
// Sample code for parsing the JSON response...
// Use this online tool to generate parsing code from sample JSON: Generate JSON Parsing Code
Get ComStringOf Of hoJResp "access_token" To sAccess_token
Get ComStringOf Of hoJResp "refresh_token" To sRefresh_token
Get ComStringOf Of hoJResp "scope" To sScope
Get ComStringOf Of hoJResp "token_type" To sToken_type
Get ComIntOf Of hoJResp "expires_in" To iExpires_in
End_Procedure
Curl Command
curl -X POST
-H "Authorization: Bearer <access_token>"
--data-urlencode 'grant_type=refresh_token'
--data-urlencode 'refresh_token={{refresh_token}}'
--data-urlencode 'client_id={{postmanConfidentialClientId}}'
--data-urlencode 'client_secret={{postmanClientSecret}}'
--data-urlencode 'scope=edit'
https://<tenant-name>.forgeblocks.com/am/oauth2/realms/root/realms/alpha/access_token
Postman Collection Item JSON
{
"name": "Step 4: Refresh the Access Token",
"event": [
{
"listen": "prerequest",
"script": {
"exec": [
""
],
"type": "text/javascript"
}
},
{
"listen": "test",
"script": {
"exec": [
"var jsonData = JSON.parse(responseBody);",
"",
"pm.test(\"Response contains new refresh_token\", function () {",
" pm.expect(jsonData.refresh_token).to.not.eql(pm.globals.get(\"refresh_token\"));",
"});",
"",
"pm.test(\"Response contains new access_token\", function () {",
" pm.expect(jsonData.access_token).to.not.eql(pm.globals.get(\"access_token\"));",
"});",
"",
"",
"",
"if(jsonData.access_token && jsonData.access_token != \"\" && jsonData.access_token != pm.globals.get(\"access_token\"))",
"{",
" pm.globals.set(\"access_token\", jsonData.access_token);",
"}",
"",
"if(jsonData.refresh_token && jsonData.refresh_token != \"\" && jsonData.refresh_token != pm.globals.get(\"refresh_token\"))",
"{",
" pm.globals.set(\"refresh_token\", jsonData.refresh_token);",
"}",
"",
"// Tests",
"",
"pm.test(\"Status code is 200\", () => {",
" pm.expect(pm.response.code).to.eql(200);",
"});",
"",
"pm.test(\"Response contains access_token\", function () {",
" pm.expect(jsonData.access_token).to.be.a(\"string\");",
"});",
"",
"pm.test(\"Response contains refresh_token\", function () {",
" pm.expect(jsonData.refresh_token).to.be.a(\"string\");",
"});",
"",
"",
"",
""
],
"type": "text/javascript"
}
}
],
"request": {
"method": "POST",
"header": [
],
"body": {
"mode": "urlencoded",
"urlencoded": [
{
"key": "grant_type",
"value": "refresh_token",
"description": "The Grant Type supported by AM.",
"type": "text"
},
{
"key": "refresh_token",
"value": "{{refresh_token}}",
"description": "The refresh token.",
"type": "text"
},
{
"key": "client_id",
"value": "{{postmanConfidentialClientId}}",
"description": "The ID of the OAuth Confidential Client.",
"type": "text"
},
{
"key": "client_secret",
"value": "{{postmanClientSecret}}",
"description": "The secret of the OAuth Confidential Client. See the ForgeRock documentation for stronger methods of client authentication.",
"type": "text"
},
{
"key": "scope",
"value": "edit",
"type": "text"
}
]
},
"url": {
"raw": "{{amUrl}}/oauth2{{realm}}/access_token",
"host": [
"{{amUrl}}"
],
"path": [
"oauth2{{realm}}",
"access_token"
]
},
"description": "Use a refresh token to ask for a new access token."
},
"response": [
{
"name": "Example - new access and refresh tokens",
"originalRequest": {
"method": "POST",
"header": [
],
"body": {
"mode": "urlencoded",
"urlencoded": [
{
"key": "grant_type",
"value": "refresh_token",
"description": "The Grant Type supported by AM.",
"type": "text"
},
{
"key": "refresh_token",
"value": "{{refresh_token}}",
"description": "The refresh token.",
"type": "text"
},
{
"key": "client_id",
"value": "{{postmanConfidentialClientId}}",
"description": "The ID of the OAuth Confidential Client.",
"type": "text"
},
{
"key": "client_secret",
"value": "{{postmanClientSecret}}",
"description": "The secret of the OAuth Confidential Client. See the ForgeRock documentation for stronger methods of client authentication.",
"type": "text"
},
{
"key": "scope",
"value": "edit",
"type": "text"
}
]
},
"url": {
"raw": "{{amUrl}}/oauth2{{realm}}/access_token",
"host": [
"{{amUrl}}"
],
"path": [
"oauth2{{realm}}",
"access_token"
]
}
},
"status": "OK",
"code": 200,
"_postman_previewlanguage": "json",
"header": [
{
"key": "X-Frame-Options",
"value": "SAMEORIGIN"
},
{
"key": "X-Content-Type-Options",
"value": "nosniff"
},
{
"key": "Cache-Control",
"value": "no-store"
},
{
"key": "Pragma",
"value": "no-cache"
},
{
"key": "Content-Type",
"value": "application/json;charset=UTF-8"
},
{
"key": "Content-Length",
"value": "1627"
},
{
"key": "Date",
"value": "Thu, 13 Aug 2020 12:21:50 GMT"
}
],
"cookie": [
],
"body": "{\n \"access_token\": \"eyJ0eXAiOiJKV1.cyI6Imh0dHA6Ly9vcGVuYW0uZ\",\n \"refresh_token\": \"eyJ0CJhbGciOiJ.NzgxNCIsImlzcyI6Imh0dH\",\n \"scope\": \"edit\",\n \"token_type\": \"Bearer\",\n \"expires_in\": 3599\n}"
}
]
}