Chilkat Online Tools

unicodeC / Salesforce Platform APIs / Web Server Flow 2

Back to Collection Items

#include <C_CkHttpW.h>
#include <C_CkHttpRequestW.h>
#include <C_CkHttpResponseW.h>
#include <C_CkStringBuilderW.h>
#include <C_CkJsonObjectW.h>

void ChilkatSample(void)
    {
    HCkHttpW http;
    BOOL success;
    HCkHttpRequestW req;
    HCkHttpResponseW resp;
    HCkStringBuilderW sbResponseBody;
    HCkJsonObjectW jResp;
    int respStatusCode;
    const wchar_t *access_token;
    const wchar_t *refresh_token;
    const wchar_t *signature;
    const wchar_t *scope;
    const wchar_t *id_token;
    const wchar_t *instance_url;
    const wchar_t *id;
    const wchar_t *token_type;
    const wchar_t *issued_at;

    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    http = CkHttpW_Create();

    req = CkHttpRequestW_Create();
    CkHttpRequestW_putHttpVerb(req,L"POST");
    CkHttpRequestW_putPath(req,L"/services/oauth2/token");
    CkHttpRequestW_putContentType(req,L"multipart/form-data");
    CkHttpRequestW_AddParam(req,L"",L"");

    CkHttpRequestW_AddParam(req,L"grant_type",L"authorization_code");

    CkHttpRequestW_AddParam(req,L"client_id",L"authorization_code{{clientId}}");

    CkHttpRequestW_AddParam(req,L"client_secret",L"authorization_code{{clientId}}{{clientSecret}}");

    CkHttpRequestW_AddParam(req,L"redirect_uri",L"authorization_code{{clientId}}{{clientSecret}}{{redirectUrl}}");

    CkHttpRequestW_AddParam(req,L"format",L"authorization_code{{clientId}}{{clientSecret}}{{redirectUrl}}json");

    resp = CkHttpW_SynchronousRequest(http,L"login.salesforce.com{{site}}",443,TRUE,req);
    if (CkHttpW_getLastMethodSuccess(http) == FALSE) {
        wprintf(L"%s\n",CkHttpW_lastErrorText(http));
        CkHttpW_Dispose(http);
        CkHttpRequestW_Dispose(req);
        return;
    }

    sbResponseBody = CkStringBuilderW_Create();
    CkHttpResponseW_GetBodySb(resp,sbResponseBody);

    jResp = CkJsonObjectW_Create();
    CkJsonObjectW_LoadSb(jResp,sbResponseBody);
    CkJsonObjectW_putEmitCompact(jResp,FALSE);

    wprintf(L"Response Body:\n");
    wprintf(L"%s\n",CkJsonObjectW_emit(jResp));

    respStatusCode = CkHttpResponseW_getStatusCode(resp);
    wprintf(L"Response Status Code = %d\n",respStatusCode);
    if (respStatusCode >= 400) {
        wprintf(L"Response Header:\n");
        wprintf(L"%s\n",CkHttpResponseW_header(resp));
        wprintf(L"Failed.\n");
        CkHttpResponseW_Dispose(resp);
        CkHttpW_Dispose(http);
        CkHttpRequestW_Dispose(req);
        CkStringBuilderW_Dispose(sbResponseBody);
        CkJsonObjectW_Dispose(jResp);
        return;
    }

    CkHttpResponseW_Dispose(resp);

    // Sample JSON response:
    // (Sample code for parsing the JSON response is shown below)

    // {
    //   "access_token": "<access_token>",
    //   "refresh_token": "<refresh_token>",
    //   "signature": "<base64>",
    //   "scope": "refresh_token full",
    //   "id_token": "<id_token>",
    //   "instance_url": "<my_domain>",
    //   "id": "https://login.salesforce.com/id/00D.../005...",
    //   "token_type": "Bearer",
    //   "issued_at": "<timestamp>"
    // }

    // Sample code for parsing the JSON response...
    // Use this online tool to generate parsing code from sample JSON: Generate JSON Parsing Code

    // Chilkat functions returning "const char *" return a pointer to temporary internal memory owned and managed by Chilkat.

    access_token = CkJsonObjectW_stringOf(jResp,L"access_token");
    refresh_token = CkJsonObjectW_stringOf(jResp,L"refresh_token");
    signature = CkJsonObjectW_stringOf(jResp,L"signature");
    scope = CkJsonObjectW_stringOf(jResp,L"scope");
    id_token = CkJsonObjectW_stringOf(jResp,L"id_token");
    instance_url = CkJsonObjectW_stringOf(jResp,L"instance_url");
    id = CkJsonObjectW_stringOf(jResp,L"id");
    token_type = CkJsonObjectW_stringOf(jResp,L"token_type");
    issued_at = CkJsonObjectW_stringOf(jResp,L"issued_at");


    CkHttpW_Dispose(http);
    CkHttpRequestW_Dispose(req);
    CkStringBuilderW_Dispose(sbResponseBody);
    CkJsonObjectW_Dispose(jResp);

    }

Curl Command

curl -X POST
	--form 'code='
	--form 'grant_type=authorization_code'
	--form 'client_id=authorization_code{{clientId}}'
	--form 'client_secret=authorization_code{{clientId}}{{clientSecret}}'
	--form 'redirect_uri=authorization_code{{clientId}}{{clientSecret}}{{redirectUrl}}'
	--form 'format=authorization_code{{clientId}}{{clientSecret}}{{redirectUrl}}json'
https://login.salesforce.com{{site}}/services/oauth2/token

Postman Collection Item JSON

{
  "name": "Web Server Flow 2",
  "event": [
    {
      "listen": "test",
      "script": {
        "exec": [
          "const jsonData = pm.response.json();",
          "const id = jsonData.id.split('/');",
          "",
          "const context = pm.environment.name ? pm.environment : pm.collectionVariables;",
          "context.set(\"_accessToken\", jsonData.access_token);",
          "context.set(\"_refreshToken\", jsonData.refresh_token);",
          "context.set(\"_endpoint\", jsonData.instance_url);",
          "context.set(\"_userId\", id.pop());",
          "context.set(\"_orgId\", id.pop());"
        ],
        "type": "text/javascript"
      }
    }
  ],
  "request": {
    "auth": {
      "type": "noauth"
    },
    "method": "POST",
    "header": [
    ],
    "body": {
      "mode": "formdata",
      "formdata": [
        {
          "key": "code",
          "value": "",
          "type": "text"
        },
        {
          "key": "grant_type",
          "value": "authorization_code",
          "type": "text"
        },
        {
          "key": "client_id",
          "value": "{{clientId}}",
          "type": "text"
        },
        {
          "key": "client_secret",
          "value": "{{clientSecret}}",
          "type": "text"
        },
        {
          "key": "redirect_uri",
          "value": "{{redirectUrl}}",
          "type": "text"
        },
        {
          "key": "format",
          "value": "json",
          "type": "text"
        }
      ]
    },
    "url": {
      "raw": "{{url}}{{site}}/services/oauth2/token",
      "host": [
        "{{url}}{{site}}"
      ],
      "path": [
        "services",
        "oauth2",
        "token"
      ]
    }
  },
  "response": [
    {
      "name": "Successful Web Server Flow 2",
      "originalRequest": {
        "method": "POST",
        "header": [
        ],
        "body": {
          "mode": "formdata",
          "formdata": [
            {
              "key": "code",
              "value": "aPrx4y_KzscWzywk1LwqIbwyH4R7DKoV5gLaVF87dSTTysEc8e9pu1f5azVNSsws2MruIV4I0A==",
              "type": "text"
            },
            {
              "key": "grant_type",
              "value": "authorization_code",
              "type": "text"
            },
            {
              "key": "client_id",
              "value": "{{clientId}}",
              "type": "text"
            },
            {
              "key": "client_secret",
              "value": "{{clientSecret}}",
              "type": "text"
            },
            {
              "key": "redirect_uri",
              "value": "{{redirectUrl}}",
              "type": "text"
            },
            {
              "key": "format",
              "value": "json",
              "type": "text"
            }
          ]
        },
        "url": {
          "raw": "{{url}}{{site}}/services/oauth2/token",
          "host": [
            "{{url}}{{site}}"
          ],
          "path": [
            "services",
            "oauth2",
            "token"
          ]
        }
      },
      "status": "OK",
      "code": 200,
      "_postman_previewlanguage": "json",
      "header": [
        {
          "key": "Date",
          "value": "Wed, 04 Oct 2023 16:25:30 GMT"
        },
        {
          "key": "Strict-Transport-Security",
          "value": "max-age=63072000; includeSubDomains"
        },
        {
          "key": "X-Content-Type-Options",
          "value": "nosniff"
        },
        {
          "key": "X-XSS-Protection",
          "value": "1; mode=block"
        },
        {
          "key": "X-Robots-Tag",
          "value": "none"
        },
        {
          "key": "Cache-Control",
          "value": "no-cache,must-revalidate,max-age=0,no-store,private"
        },
        {
          "key": "Expires",
          "value": "Thu, 01 Jan 1970 00:00:00 GMT"
        },
        {
          "key": "Content-Type",
          "value": "application/json;charset=UTF-8"
        },
        {
          "key": "Vary",
          "value": "Accept-Encoding"
        },
        {
          "key": "Content-Encoding",
          "value": "gzip"
        },
        {
          "key": "Transfer-Encoding",
          "value": "chunked"
        }
      ],
      "cookie": [
      ],
      "body": "{\n    \"access_token\": \"<access_token>\",\n    \"refresh_token\": \"<refresh_token>\",\n    \"signature\": \"<base64>\",\n    \"scope\": \"refresh_token full\",\n    \"id_token\": \"<id_token>\",\n    \"instance_url\": \"<my_domain>\",\n    \"id\": \"https://login.salesforce.com/id/00D.../005...\",\n    \"token_type\": \"Bearer\",\n    \"issued_at\": \"<timestamp>\"\n}"
    }
  ]
}