OAuth2 Unicode C Reference Documentation
OAuth2
Current Version: 10.1.2
The Chilkat OAuth2 class enables desktop applications and scripts to implement the OAuth2 Authorization Code Flow for obtaining an initial access token.
The StartAuth method initiates the flow by generating a URL that should be opened in a browser. Simultaneously, it starts a background thread to listen for the redirect response. The LaunchBrowser method can be used to open the default browser with the generated URL.
The process is completed when the user grants or denies authorization, and the background thread captures the response, passing it to the application's main thread.
Note: This class is only used to obtain the initial OAuth2 access token. After that, the token can be refreshed for an extended period without requiring user interaction.
Create/Dispose
HCkOAuth2W instance = CkOAuth2W_Create(); // ... CkOAuth2W_Dispose(instance);
Creates an instance of the HCkOAuth2W object and returns a handle ("void *" pointer). The handle is passed in the 1st argument for the functions listed on this page.
Objects created by calling CkOAuth2W_Create must be freed by calling this method. A memory leak occurs if a handle is not disposed by calling this function. Also, any handle returned by a Chilkat "C" function must also be freed by the application by calling the appropriate Dispose method, such as CkOAuth2W_Dispose.
Callback Functions
Provides the opportunity for a method call to be aborted. If TRUE is returned, the operation in progress is aborted. Return FALSE to allow the current method call to continue. This callback function is called periodically based on the value of the HeartbeatMs property. (If HeartbeatMs is 0, then no callbacks are made.) As an example, to make 5 AbortCheck callbacks per second, set the HeartbeatMs property equal to 200.
Provides the percentage completed for any method that involves network communications or time-consuming processing (assuming it is a method where a percentage completion can be measured). This callback is only called when it is possible to know a percentage completion, and when it makes sense to express the operation as a percentage completed. The pctDone argument will have a value from 1 to 100. For methods that complete very quickly, the number of PercentDone callbacks will vary, but the final callback should have a value of 100. For long running operations, no more than one callback per percentage point will occur (for example: 1, 2, 3, ... 98, 99, 100).
This callback counts as an AbortCheck callback, and takes the place of the AbortCheck event when it fires.
The return value indicates whether the method call should be aborted, or whether it should proceed. Return TRUE to abort, and FALSE to proceed.
This is a general callback that provides name/value information about what is happening at certain points during a method call. To see the information provided in ProgressInfo callbacks, if any, write code to handle this event and log the name/value pairs. Most are self-explanatory.
Called in the background thread when an asynchronous task completes. (Note: When an async method is running, all callbacks are in the background thread.)
Properties
AccessToken
void CkOAuth2W_putAccessToken(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_accessToken(HCkOAuth2W cHandle);
Once the OAuth2 authorization code flow successfully completes in the background thread, this property holds the access_token from the access token response. For example, a Google API access token looks like this:
ya29.a0AfH6SMC2z8Q1Z2X3Y ... 8M9N0O1P2Q3R4S5T6U7V8W9X0Y1Z2
AccessTokenResponse
const wchar_t *CkOAuth2W_accessTokenResponse(HCkOAuth2W cHandle);
Once the OAuth2 authorization code flow successfully completes in the background thread, this property holds the access_token JSON. For instance, a successful X.com access token appears as follows:
{
"token_type": "bearer",
"expires_in": 7200,
"access_token": "AAAAAAAAAAAAAAAAAAAAA...",
"scope": "tweet.read tweet.write users.read offline.access",
"refresh_token": "BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB"
}
| Field | Description |
|---|---|
token_type | The type of token. Typically bearer. |
expires_in | The lifetime of the access token in seconds (e.g., 7200 seconds = 2 hours). |
access_token | The access token string used to authenticate API requests. |
scope | The permissions granted to the access token (e.g., read/write tweets). |
refresh_token | (Optional) A token used to obtain a new access token when the current one expires. Often only provided if the offline.access scope was requested. |
Note: Not all responses are JSON. A successful Facebook response is plain text and looks like this:
access_token=EAAZALuOC1wAwBAKH6FKnxOkjfEP ... UBZBhYD5hSVBETBx6AZD&expires=5134653
AppCallbackUrl
void CkOAuth2W_putAppCallbackUrl(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_appCallbackUrl(HCkOAuth2W cHandle);
This property should only be set if the OAuth2 provider does not allow localhost or loopback (127.0.0.1) redirect URLs, or requires "https://" redirect URLs.
The AppCallbackUrl is a URL that is an endpoint on your own web server that will act as an Intermediary to redirect back to localhost. For more information, see Using Your Web Server as an Intermediary for OAuth2 Redirect to localhost.
AuthFlowState
Indicates the current stage of the OAuth2 authorization flow. Possible values:
- 0: Idle. No OAuth2 flow has been initiated.
- 1: Awaiting Redirect. The OAuth2 background thread is waiting for the browser's redirect HTTP request.
- 2: Awaiting Final Response. The OAuth2 background thread is waiting for the final access token response.
- 3: Success. The OAuth2 flow completed successfully. The background thread has exited, and the JSON response is available in the
AccessTokenResponseproperty. - 4: Access Denied. The OAuth2 flow completed, but access was denied. The background thread has exited, and the error JSON is available in the
AccessTokenResponseproperty. - 5: Failed. The OAuth2 flow failed before completion. The background thread has exited, and error details are available in the
FailureInfoproperty.
AuthorizationEndpoint
void CkOAuth2W_putAuthorizationEndpoint(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_authorizationEndpoint(HCkOAuth2W cHandle);
You'll need to know the authorization and token endpoints for your OAuth2 provider. Set this property to the authorization endpoint. Some providers have both sandbox and production endpoints. Here are some sample endpoints:
| Platform | Authorization Endpoint | Token Endpoint |
|---|---|---|
https://accounts.google.com/o/oauth2/v2/auth
|
https://www.googleapis.com/oauth2/v4/token
|
|
| Microsoft |
https://login.microsoftonline.com/{tenant}/oauth2/v2.0/authorize
|
https://login.microsoftonline.com/{tenant}/oauth2/v2.0/token
|
| X.com |
https://x.com/i/oauth2/authorize
|
https://api.x.com/2/oauth2/token
|
| Salesforce |
https://login.salesforce.com/services/oauth2/authorize
|
https://login.salesforce.com/services/oauth2/token
|
| QuickBooks |
https://appcenter.intuit.com/connect/oauth2
|
https://oauth.platform.intuit.com/oauth2/v1/tokens/bearer
|
ClientId
void CkOAuth2W_putClientId(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_clientId(HCkOAuth2W cHandle);
Should be set to the Client ID assigned to your application when it is registered with an OAuth2 authorization server. It is used to identify the application making the authorization request.
ClientSecret
void CkOAuth2W_putClientSecret(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_clientSecret(HCkOAuth2W cHandle);
Set this to the client secret assigned to an application when it is registered with an OAuth2 authorization server.
CodeChallenge
void CkOAuth2W_putCodeChallenge(HCkOAuth2W cHandle, BOOL newVal);
Set this to TRUE to enable PKCE (Proof Key for Code Exchange). The default value is FALSE.
CodeChallengeMethod
void CkOAuth2W_putCodeChallengeMethod(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_codeChallengeMethod(HCkOAuth2W cHandle);
This selects the code challenge method for PKCE, and applies only when the CodeChallenge property is set to TRUE. The available options are "plain" and "S256", with "S256" as the default.
DebugLogFilePath
void CkOAuth2W_putDebugLogFilePath(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_debugLogFilePath(HCkOAuth2W cHandle);
If set to a file path, this property logs the LastErrorText of each Chilkat method or property call to the specified file. This logging helps identify the context and history of Chilkat calls leading up to any crash or hang, aiding in debugging.
Enabling the VerboseLogging property provides more detailed information. This property is mainly used for debugging rare instances where a Chilkat method call causes a hang or crash, which should generally not happen.
Possible causes of hangs include:
- A timeout property set to 0, indicating an infinite timeout.
- A hang occurring within an event callback in the application code.
- An internal bug in the Chilkat code causing the hang.
FailureInfo
const wchar_t *CkOAuth2W_failureInfo(HCkOAuth2W cHandle);
If the OAuth2 authorization fails before completion (AuthFlowState = 5), this property will contain failure details. It is automatically cleared when OAuth2 authorization begins (when StartAuth is called).
topIncludeNonce
void CkOAuth2W_putIncludeNonce(HCkOAuth2W cHandle, BOOL newVal);
Optional. Set this to TRUE to send a nonce with the authorization request. The length of the nonce is determined by the NonceLength property. The default value is FALSE.
In OAuth, the nonce is a unique, random value included in the authorization request to prevent Replay Attacks:
- The nonce ensures that an authorization request cannot be reused by an attacker.
- It binds the authorization request to a specific instance, preventing malicious reuse.
LastErrorHtml
const wchar_t *CkOAuth2W_lastErrorHtml(HCkOAuth2W cHandle);
Provides HTML-formatted information about the last called method or property. If a method call fails or behaves unexpectedly, check this property for details. Note that information is available regardless of the method call's success.
topLastErrorText
const wchar_t *CkOAuth2W_lastErrorText(HCkOAuth2W cHandle);
Provides plain text information about the last called method or property. If a method call fails or behaves unexpectedly, check this property for details. Note that information is available regardless of the method call's success.
LastErrorXml
const wchar_t *CkOAuth2W_lastErrorXml(HCkOAuth2W cHandle);
Provides XML-formatted information about the last called method or property. If a method call fails or behaves unexpectedly, check this property for details. Note that information is available regardless of the method call's success.
topLastMethodSuccess
void CkOAuth2W_putLastMethodSuccess(HCkOAuth2W cHandle, BOOL newVal);
Indicates the success or failure of the most recent method call: TRUE means success, FALSE means failure. This property remains unchanged by property setters or getters. This method is present to address challenges in checking for null or Nothing returns in certain programming languages.
topListenPort
void CkOAuth2W_putListenPort(HCkOAuth2W cHandle, int newVal);
Set this to the port number to be used for receiving the redirect request from the local browser. Use a port in the range 1024 to 65535 to avoid conflicts with reserved system ports. Avoid well-known ports like 80, 443, 22, etc., as they are used by system services.
Note: The chosen port number determines the redirect URL defined for your app in the OAuth2 provider's developer portal. For example, if port 3017 is chosen, then your redirect URL should be http://localhost:3017/.
Note:
- You must use
http:, nothttps:. Because the browser and your application are running on the same machine, the redirect request is handled entirely within the operating system. It never leaves the machine, so it cannot be intercepted on the network. - The
/terminating the redirect URL is critical and must be included. Do not omit it, otherwise the OAuth2 authorization will fail. - If the
LocalHostproperty (see below) is set to127.0.0.1, then the redirect URL defined for your App in the OAuth2 provider's developer portal should use127.0.0.1instead oflocalhost. For example:http://127.0.0.1:3017/
ListenPortRangeEnd
void CkOAuth2W_putListenPortRangeEnd(HCkOAuth2W cHandle, int newVal);
This property allows for a range of listen port numbers to be used. If set to a non-zero value, then Chilkat will use an unused port in the range from ListenPort to ListenPortRangeEnd.
For example, if ListenPort=55110 and ListenPortRangeEnd=55117, then define the following redirect URL's for your app in the OAuth2 provider's developer portal:
- http://localhost:55110/
- http://localhost:55112/
- http://localhost:55113/
- http://localhost:55114/
- http://localhost:55115/
- http://localhost:55116/
- http://localhost:55117/
ListenPortSelected
This is a read-only property that gets set when the OAuth2 authorization flow completes. It contains the port number that was used when receiving the redirect callback.
topLocalHost
void CkOAuth2W_putLocalHost(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_localHost(HCkOAuth2W cHandle);
Chooses between http://localhost:{portNumber}/ or http://127.0.0.1:{portNumber}/ to be used for the redirect (callback) URL. The default value is localhost. An application can change this property to 127.0.0.1 if desired. See the X.com example linked below, which uses http://127.0.0.1:3017/.
NonceLength
void CkOAuth2W_putNonceLength(HCkOAuth2W cHandle, int newVal);
The nonce length, measured in bytes, is defined here. A nonce is included only when the IncludeNonce property is set to TRUE. Since the nonce is a hexadecimal string, its character length is double its byte length. By default, the nonce is 4 bytes long.
Oob
void CkOAuth2W_putOob(HCkOAuth2W cHandle, BOOL newVal);
Set to TRUE if the redirect URI is to be set to urn:ietf:wg:oauth:2.0:oob and the authorization code will be supplied manually and passed to ExchangeCodeForToken. The default value is FALSE.
This is for the Out-of-Band) flow, which is a legacy flow where the authorization code is delivered to the client application through an out-of-band mechanism, such as manually copying and pasting the code, rather than being automatically redirected via a "redirect_uri". This flow was historically used for applications that couldn't securely handle redirects, such as native or mobile apps, but it has largely been deprecated in favor of more secure flows like PKCE (Proof Key for Code Exchange).
RedirectAllowHtml
void CkOAuth2W_putRedirectAllowHtml(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_redirectAllowHtml(HCkOAuth2W cHandle);
This property holds the HTML displayed in the browser when the end-user grants access. By default, it includes a META refresh directing to https://www.chilkatsoft.com/oauth2_allowed.html. Your application can modify this HTML to show any content when access is granted. You might want to change the refresh URL to a page on your company’s website or use simple HTML to display custom information without redirection.
The default value of this property is:
<html> <head><meta http-equiv='refresh' content='0;url=https://www.chilkatsoft.com/oauth2_allowed.html'></head> <body>Thank you for allowing access.</body> </html>top
RedirectDenyHtml
void CkOAuth2W_putRedirectDenyHtml(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_redirectDenyHtml(HCkOAuth2W cHandle);
This property holds the HTML displayed in the browser when the end-user denies access. By default, it includes a META refresh directing to https://www.chilkatsoft.com/oauth2_denied.html. Your application can modify this HTML to show any content when access is granted. You might want to change the refresh URL to a page on your company’s website or use simple HTML to display custom information without redirection.
The default value of this property is:
<html> <head><meta http-equiv='refresh' content='0;url=https://www.chilkatsoft.com/oauth2_denied.html'></head> <body>The app will not have access.</body> </html>top
RedirectReqReceived
const wchar_t *CkOAuth2W_redirectReqReceived(HCkOAuth2W cHandle);
Contains the HTTP redirect request received from the local web browser. This is used for debugging.
Here is a sample:
GET /?state=lW6hdb-jSR2ntNCZ9NMzVozWaxuSpkaSLs8SZCDZsjI&code=NU1nbUN ...... FjOjE HTTP/1.1 Host: 127.0.0.1:3017 Connection: keep-alive sec-ch-ua: "Not(A:Brand";v="99", "Microsoft Edge";v="133", "Chromium";v="133" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" DNT: 1 Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9top
RefreshToken
void CkOAuth2W_putRefreshToken(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_refreshToken(HCkOAuth2W cHandle);
Once the OAuth2 authorization code flow successfully completes in the background thread, this property holds the refresh_token from the access token response. For example, an X.com refresh token looks like this:
NmJjUC1aX2VDZnFzaE5ObFp ..... OjE3NDAxNzM0MTcyNjI6MTowOnJ0OjEtop
Resource
void CkOAuth2W_putResource(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_resource(HCkOAuth2W cHandle);
This optional setting specifies the resource query parameter. For instance, set it to https://graph.microsoft.com/ for Microsoft Graph API calls. It is also needed for Microsoft Dynamics CRM OAuth authentication.
ResponseMode
void CkOAuth2W_putResponseMode(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_responseMode(HCkOAuth2W cHandle);
Can be set to form_post to include a response_mode=form_post in the authorization request. The default value is the empty string to omit the response_mode query param.
ResponseType
void CkOAuth2W_putResponseType(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_responseType(HCkOAuth2W cHandle);
The default value is code. Can be set to id_token+code for cases where response_type=id_token+code is required in the authorization request.
Scope
void CkOAuth2W_putScope(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_scope(HCkOAuth2W cHandle);
In OAuth2, scopes are permissions that specify what access level the client application is requesting for a user's resources. Scopes are included in the authorization request to ask for specific permissions. The user reviews and consents to these scopes before authorization.
Scopes are typically formatted with a SPACE char separating each requested scope. Here's an example for Google Drive:
openid email profile https://www.googleapis.com/auth/drive.readonly
- "openid": Access to basic profile information.
- "email": Access to the user’s email address.
- "profile": Access to the user's profile information.
- "drive.readonly": Read-only access to Google Drive files.
StateParam
void CkOAuth2W_putStateParam(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_stateParam(HCkOAuth2W cHandle);
Allows the application to explicitly set the state parameter to a value. Typically this property should remain unset, and Chilkat will automatically generate a random state. (The generated random state is not reflected in this property. In other words, you can't get the random state that was generated by reading this property.)
Note: The special string "{listenPort}" can be included in the value of this property. Chilkat will replace "{listenPort}" with the actual listen port used. This can be useful if your application is listening on range of ports and you want the state param to include the chosen port.
topTokenEndpoint
void CkOAuth2W_putTokenEndpoint(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_tokenEndpoint(HCkOAuth2W cHandle);
You'll need to know the authorization and token endpoints for your OAuth2 provider. Set this property to the token endpoint. Some providers have both sandbox and production endpoints. Here are some sample endpoints:
| Platform | Authorization Endpoint | Token Endpoint |
|---|---|---|
https://accounts.google.com/o/oauth2/v2/auth
|
https://www.googleapis.com/oauth2/v4/token
|
|
| Microsoft |
https://login.microsoftonline.com/{tenant}/oauth2/v2.0/authorize
|
https://login.microsoftonline.com/{tenant}/oauth2/v2.0/token
|
| X.com |
https://x.com/i/oauth2/authorize
|
https://api.x.com/2/oauth2/token
|
| Salesforce |
https://login.salesforce.com/services/oauth2/authorize
|
https://login.salesforce.com/services/oauth2/token
|
| QuickBooks |
https://appcenter.intuit.com/connect/oauth2
|
https://oauth.platform.intuit.com/oauth2/v1/tokens/bearer
|
TokenType
void CkOAuth2W_putTokenType(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_tokenType(HCkOAuth2W cHandle);
Once the OAuth2 authorization code flow successfully completes in the background thread, this property holds the token_type from the AccessTokenResponse.
UncommonOptions
void CkOAuth2W_putUncommonOptions(HCkOAuth2W cHandle, const wchar_t *newVal);
const wchar_t *CkOAuth2W_uncommonOptions(HCkOAuth2W cHandle);
This is a catch-all property to be used for uncommon needs. This property defaults to the empty string, and should typically remain empty.
Can be set to a list of the following comma separated keywords:
- NO_OAUTH2_SCOPE - Do not includethe "scope" parameter when exchanging the authorization code for an access token.
- ExchangeCodeForTokenUsingJson - Introduced in v9.5.0.98. Use an HTTP POST with JSON request body for the final exchange-code-for-token HTTP request in the authorization code flow.
- RefreshTokenUsingJson - Introduced in v9.5.0.98. Use an HTTP POST with JSON request body for the token refresh HTTP request.
UseBasicAuth
void CkOAuth2W_putUseBasicAuth(HCkOAuth2W cHandle, BOOL newVal);
When set to TRUE, the internal POST request that exchanges the code for an access token will include the client_id/client_secret in an Authorization Basic ... header, using the client_id as the login and the client_secret as the password. By default, this setting is FALSE, meaning the client_id/client_secret are sent as query parameters.
VerboseLogging
void CkOAuth2W_putVerboseLogging(HCkOAuth2W cHandle, BOOL newVal);
If set to TRUE, then the contents of LastErrorText (or LastErrorXml, or LastErrorHtml) may contain more verbose information. The default value is FALSE. Verbose logging should only be used for debugging. The potentially large quantity of logged information may adversely affect peformance.
topVersion
const wchar_t *CkOAuth2W_version(HCkOAuth2W cHandle);
Methods
AddAuthQueryParam
Adds a custom query parameter (name=value) to the URL returned by the StartAuth method. This accommodates OAuth installations requiring custom query parameters. You can call this method multiple times, adding one query parameter per call.
Returns TRUE for success, FALSE for failure.
AddRefreshQueryParam
Adds a query parameter (name=value) to the HTTP request sent by the RefreshAccessToken method. You can call this method multiple times to add more query parameters.
Returns TRUE for success, FALSE for failure.
AddTokenQueryParam
Adds a custom query parameter (name=value) to the internal request used to exchange the authorization code for a token, accommodating OAuth setups that require non-standard parameters. This method can be called multiple times to add multiple query parameters.
Returns TRUE for success, FALSE for failure.
topCancel
ExchangeCodeForToken
This method is specifically for the OOB (Out-of-Band) authorization flow, where you manually obtain and pass the authorization code to complete the OAuth2 process.
Returns TRUE for success, FALSE for failure.
ExchangeCodeForTokenAsync (1)
Creates an asynchronous task to call the ExchangeCodeForToken method with the arguments provided.
Returns NULL on failure
topGetAccessTokenResponseSb
Same as the AccessTokenResponse property, but returns the JSON in the sb.
Returns TRUE for success, FALSE for failure.
topGetRedirectRequestParam
const wchar_t *CkOAuth2W_getRedirectRequestParam(HCkOAuth2W cHandle, const wchar_t *paramName);
Some OAuth2 providers can provide additional parameters in the redirect request sent to the local listener (i.e. the Chilkat background thread). One such case is for QuickBooks, It contains a realmId parameter such as the following:
http://localhost:55568/?state=xxxxxxxxxxxx&code=xxxxxxxxxxxx&realmId=1234567890
After the OAuth2 authentication is completed, an application can call this method to get any of the parameter values. For example, to get the realmId value, pass "realmId" in paramName.
See the code snippet at the very bottom of the example linked below.
Returns TRUE for success, FALSE for failure.
LaunchBrowser
Launches the default browser and navigated to url. If a browser window is already open, the page will be displayed in a new tab. This works on Windows, MacOS, and Linux.
Returns TRUE for success, FALSE for failure.
topLoadTaskCaller
Monitor
This deprecated method observes an ongoing OAuth2 authorization flow and returns when it completes. It will be removed in a future major release. Instead of using this method, regularly check if the AuthFlowState property is greater than or equal to 3. If there's no browser response, cancel the waiting background thread by calling the Cancel method.
Returns TRUE for success, FALSE for failure.
topMonitorAsync (1)
Creates an asynchronous task to call the Monitor method with the arguments provided.
Returns NULL on failure
topRefreshAccessToken
To obtain a new access token, this method sends a refresh token request to the token endpoint. Upon success, it updates the AccessToken and RefreshToken properties with new values. Note: This method requires valid values for the ClientId, ClientSecret, RefreshToken, and TokenEndpoint properties.
For a deeper understanding, see OAuth2 Refresh Token Request Explained
Returns TRUE for success, FALSE for failure.
RefreshAccessTokenAsync (1)
Creates an asynchronous task to call the RefreshAccessToken method with the arguments provided.
Returns NULL on failure
topSetRefreshHeader
Allows you to add HTTP request headers to the HTTP request sent by the RefreshAccessToken method. For instance, to include the "Accept: application/json" header, use this method with name as "Accept" and value as "application/json". To add multiple headers, call this method separately for each header. To remove a header, set name to the header name and value to an empty string.
Returns TRUE for success, FALSE for failure.
SleepMs
Convenience method to force the calling thread to sleep for a number of milliseconds.
topStartAuth
const wchar_t *CkOAuth2W_startAuth(HCkOAuth2W cHandle);
This method initiates the OAuth2 authorization code flow. Set the following properties before calling this method: ClientId, ClientSecret, ListenPort, Scope, AuthorizationEndpoint, and TokenEndpoint. Note that ClientSecret may not be required if the OAuth2 provider supports Proof Key for Code Exchange (PKCE). This method performs two actions:
- It generates and returns a URL to be opened in a browser.
- It launches a background thread that listens on the specified ListenPort for the browser's redirect request. The entire process of handling this request and completing the OAuth2 authorization flow is managed in the background thread within Chilkat.
The method's return value is the URL to open in a browser.
Returns TRUE for success, FALSE for failure.
UseConnection
Calling this method is optional and only necessary if you need to use a proxy (HTTP or SOCKS), an SSH tunnel, or specific socket options for the connection. If you do not use this method, the connection to the token endpoint will be a direct one using TLS. The method assigns the socket object for sending requests to the token endpoint in the background thread. You can pass either a connected or unconnected socket as sock. For SSH tunnels, sock must already be connected, whereas for setting options like HTTP or SOCKS proxies, an unconnected sock is sufficient.
Returns TRUE for success, FALSE for failure.