Back to Collection Items
load ./chilkat.dll
# This example assumes the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.
set http [new_CkHttp]
set req [new_CkHttpRequest]
CkHttpRequest_AddParam $req "response_type" "device_code"
set jsonParam2 [new_CkJsonObject]
CkHttpRequest_AddParam $req "client_id" [CkJsonObject_emit $jsonParam2]
CkHttpRequest_AddParam $req "scope" "manage"
CkHttpRequest_AddParam $req "code_challenge_method" "S256"
set jsonParam5 [new_CkJsonObject]
CkHttpRequest_AddParam $req "code_challenge" [CkJsonObject_emit $jsonParam5]
CkHttpRequest_AddHeader $req "Authorization" "Bearer <access_token>"
# resp is a CkHttpResponse
set resp [CkHttp_PostUrlEncoded $http "https://<tenant-name>.forgeblocks.com/am/oauth2/realms/root/realms/alpha/device/code" $req]
if {[CkHttp_get_LastMethodSuccess $http] == 0} then {
puts [CkHttp_lastErrorText $http]
delete_CkHttp $http
delete_CkHttpRequest $req
delete_CkJsonObject $jsonParam2
delete_CkJsonObject $jsonParam5
exit
}
set sbResponseBody [new_CkStringBuilder]
CkHttpResponse_GetBodySb $resp $sbResponseBody
set jResp [new_CkJsonObject]
CkJsonObject_LoadSb $jResp $sbResponseBody
CkJsonObject_put_EmitCompact $jResp 0
puts "Response Body:"
puts [CkJsonObject_emit $jResp]
set respStatusCode [CkHttpResponse_get_StatusCode $resp]
puts "Response Status Code = $respStatusCode"
if {$respStatusCode >= 400} then {
puts "Response Header:"
puts [CkHttpResponse_header $resp]
puts "Failed."
delete_CkHttpResponse $resp
delete_CkHttp $http
delete_CkHttpRequest $req
delete_CkJsonObject $jsonParam2
delete_CkJsonObject $jsonParam5
delete_CkStringBuilder $sbResponseBody
delete_CkJsonObject $jResp
exit
}
delete_CkHttpResponse $resp
# Sample JSON response:
# (Sample code for parsing the JSON response is shown below)
# {
# "user_code": "x3W2JEFJ",
# "device_code": "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJhdWQiOiJodHRwOi8vb3BlbmFtLmV4YW1wbGUuY29tOjgwODAvb3BlbmFtL29hdXRoMiIsIm5iZiI6MTU5NzMyMTE0OCwidXNlcl9jb2RlIjoieDNXMkpFRkoiLCJpc3MiOiJodHRwOi8vb3BlbmFtLmV4YW1wbGUuY29tOjgwODAvb3BlbmFtL29hdXRoMiIsImV4cCI6MTU5NzMyMTQ0OCwiaWF0IjoxNTk3MzIxMTQ4LCJqdGkiOiIxYWI0MTE5Yy0yYjE4LTQxYWYtYjZjMC1iNTRmZTQxZWZhNjEifQ.gCoWICyPwJhD7LshgpfLpc9zEt6iUrsjmbGv6yk2kW0",
# "interval": 5,
# "verification_uri": "http://openam.example.com:8080/openam/oauth2/device/user",
# "expires_in": 300,
# "verification_url": "http://openam.example.com:8080/openam/oauth2/device/user"
# }
# Sample code for parsing the JSON response...
# Use this online tool to generate parsing code from sample JSON: Generate JSON Parsing Code
set user_code [CkJsonObject_stringOf $jResp "user_code"]
set device_code [CkJsonObject_stringOf $jResp "device_code"]
set interval [CkJsonObject_IntOf $jResp "interval"]
set verification_uri [CkJsonObject_stringOf $jResp "verification_uri"]
set expires_in [CkJsonObject_IntOf $jResp "expires_in"]
set verification_url [CkJsonObject_stringOf $jResp "verification_url"]
delete_CkHttp $http
delete_CkHttpRequest $req
delete_CkJsonObject $jsonParam2
delete_CkJsonObject $jsonParam5
delete_CkStringBuilder $sbResponseBody
delete_CkJsonObject $jResp
Curl Command
curl -X POST
-H "Authorization: Bearer <access_token>"
--data-urlencode 'response_type=device_code'
--data-urlencode 'client_id={{postmanPublicClientId}}'
--data-urlencode 'scope=manage'
--data-urlencode 'code_challenge_method=S256'
--data-urlencode 'code_challenge={{code_challenge}}'
https://<tenant-name>.forgeblocks.com/am/oauth2/realms/root/realms/alpha/device/code
Postman Collection Item JSON
{
"name": "Step 2: Get User Code and Device Code",
"event": [
{
"listen": "test",
"script": {
"exec": [
"const jsonData = pm.response.json();",
"",
"if(pm.response.code == 200)",
"{",
" if(jsonData.user_code && jsonData.user_code != \"\") {",
" pm.globals.set(\"user_code\", jsonData.user_code);",
" }",
"",
" if(jsonData.device_code && jsonData.device_code != \"\") {",
" pm.globals.set(\"device_code\", jsonData.device_code);",
" }",
"}",
"",
"// Tests",
"",
"pm.test(\"Status code is 200\", () => {",
" pm.expect(pm.response.code).to.eql(200);",
"});",
"",
"pm.test(\"Response contains `user_code`.\", function () {",
" pm.expect(jsonData.user_code).to.be.a(\"string\");",
"});",
"",
"pm.test(\"Response contains `device_code`.\", function () {",
" pm.expect(jsonData.device_code).to.be.a(\"string\");",
"});"
],
"type": "text/javascript"
}
},
{
"listen": "prerequest",
"script": {
"exec": [
"function base64URLEncode(words) {",
" return CryptoJS.enc.Base64.stringify(words)",
" .replace(/\\+/g, '-')",
" .replace(/\\//g, '_')",
" .replace(/=/g, '');",
"}",
"const code_verifier = base64URLEncode(CryptoJS.lib.WordArray.random(50));",
"const code_challenge = base64URLEncode(CryptoJS.SHA256(code_verifier));",
"",
"pm.globals.set(\"code_challenge\", code_challenge);",
"pm.globals.set(\"code_verifier\", code_verifier);"
],
"type": "text/javascript"
}
}
],
"request": {
"method": "POST",
"header": [
],
"body": {
"mode": "urlencoded",
"urlencoded": [
{
"key": "response_type",
"value": "device_code",
"description": "Response types this client will support and use.",
"type": "text"
},
{
"key": "client_id",
"value": "{{postmanPublicClientId}}",
"description": "The ID of the Confidential OAuth Client.",
"type": "text"
},
{
"key": "scope",
"value": "manage",
"description": "Strings that are presented to the user for approval and included in tokens so that the protected resource may make decisions about what to give access to.",
"type": "text"
},
{
"key": "code_challenge_method",
"value": "S256",
"description": "The method used to generate the code challenge.",
"type": "text"
},
{
"key": "code_challenge",
"value": "{{code_challenge}}",
"description": "The generated code challenge.",
"type": "text"
}
]
},
"url": {
"raw": "{{amUrl}}/oauth2{{realm}}/device/code",
"host": [
"{{amUrl}}"
],
"path": [
"oauth2{{realm}}",
"device",
"code"
]
},
"description": "Receive a user code and a device code, which can be used to provide consent.\n\n\n\n"
},
"response": [
{
"name": "Example",
"originalRequest": {
"method": "POST",
"header": [
],
"body": {
"mode": "urlencoded",
"urlencoded": [
{
"key": "response_type",
"value": "device_code",
"description": "Response types this client will support and use.",
"type": "text"
},
{
"key": "client_id",
"value": "{{postmanPublicClientId}}",
"description": "The ID of the Confidential OAuth Client.",
"type": "text"
},
{
"key": "scope",
"value": "manage",
"description": "Strings that are presented to the user for approval and included in tokens so that the protected resource may make decisions about what to give access to.",
"type": "text"
},
{
"key": "code_challenge_method",
"value": "S256",
"description": "The method used to generate the code challenge.",
"type": "text"
},
{
"key": "code_challenge",
"value": "{{code_challenge}}",
"description": "The generated code challenge.",
"type": "text"
}
]
},
"url": {
"raw": "{{amUrl}}/oauth2{{realm}}/device/code",
"host": [
"{{amUrl}}"
],
"path": [
"oauth2{{realm}}",
"device",
"code"
]
}
},
"status": "OK",
"code": 200,
"_postman_previewlanguage": "json",
"header": [
{
"key": "X-Frame-Options",
"value": "SAMEORIGIN"
},
{
"key": "X-Content-Type-Options",
"value": "nosniff"
},
{
"key": "Content-Type",
"value": "application/json;charset=UTF-8"
},
{
"key": "Content-Length",
"value": "610"
},
{
"key": "Date",
"value": "Thu, 13 Aug 2020 12:19:08 GMT"
}
],
"cookie": [
],
"body": "{\n \"user_code\": \"x3W2JEFJ\",\n \"device_code\": \"eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJhdWQiOiJodHRwOi8vb3BlbmFtLmV4YW1wbGUuY29tOjgwODAvb3BlbmFtL29hdXRoMiIsIm5iZiI6MTU5NzMyMTE0OCwidXNlcl9jb2RlIjoieDNXMkpFRkoiLCJpc3MiOiJodHRwOi8vb3BlbmFtLmV4YW1wbGUuY29tOjgwODAvb3BlbmFtL29hdXRoMiIsImV4cCI6MTU5NzMyMTQ0OCwiaWF0IjoxNTk3MzIxMTQ4LCJqdGkiOiIxYWI0MTE5Yy0yYjE4LTQxYWYtYjZjMC1iNTRmZTQxZWZhNjEifQ.gCoWICyPwJhD7LshgpfLpc9zEt6iUrsjmbGv6yk2kW0\",\n \"interval\": 5,\n \"verification_uri\": \"http://openam.example.com:8080/openam/oauth2/device/user\",\n \"expires_in\": 300,\n \"verification_url\": \"http://openam.example.com:8080/openam/oauth2/device/user\"\n}"
}
]
}
