Swift
Swift
PRODA Get OAuth2 Access Token using JWT
See more PRODA Examples
Demonstrates how to get an OAuth2 access token for the PRODA Australian Government Online Services using a JWT.Chilkat Swift Downloads
func chilkatTest() {
var success: Bool = false
// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
// First create a JWT to be sent in the POST to https://vnd.proda.humanservices.gov.au/mga/sps/oauth/oauth20/token
let privKey = CkoPrivateKey()!
// Load an RSA private key from a PEM file.
// Chilkat provides alternative methods to load from other formats, or to load from a string or binary data.
success = privKey.loadEncryptedPemFile(path: "qa_data/pem/rsa_passwd.pem", password: "passwd")
if success == false {
print("\(privKey.lastErrorText!)")
return
}
let jwt = CkoJwt()!
// Build the JOSE header
let jose = CkoJsonObject()!
// Use RS256. Pass the string "RS384" or "RS512" to use RSA with SHA-384 or SHA-512.
success = jose.appendString(name: "alg", value: "RS256")
success = jose.appendString(name: "typ", value: "JWT")
success = jose.appendString(name: "kid", value: "test-device")
// Now build the JWT claims (also known as the payload)
let claims = CkoJsonObject()!
success = claims.appendString(name: "iss", value: "9646844092")
success = claims.appendString(name: "sub", value: "test-device")
success = claims.appendString(name: "aud", value: "https://proda.humanservices.gov.au")
// Set the timestamp of when the JWT was created to now.
var curDateTime: Int = jwt.genNumericDate(numSecOffset: 0).intValue
success = claims.addInt(at: -1, name: "iat", value: curDateTime)
// Set the timestamp defining an expiration time (end time) for the token
// to be now + 1 hour (3600 seconds)
success = claims.addInt(at: -1, name: "exp", value: curDateTime + 3600)
// Produce the smallest possible JWT:
jwt.autoCompact = true
// Create the JWT token. This is where the RSA signature is created.
var jwtToken: String? = jwt.createPk(header: jose.emit(), payload: claims.emit(), key: privKey)
// ---------------------------------------------------------------------
// Build and send the POST, which should look something like this:
// POST https://vnd.proda.humanservices.gov.au/mga/sps/oauth/oauth20/token HTTP/1.1
// Content-Type: application/x-www-form-urlencoded
// Content-Length: 666
// Host: vnd.proda.humanservices.gov.au
//
// grant_type=urn%3Aietf%3Aparams%3Aoauth%3Agrant-type%3Ajwt-bearer&assertion=<jwt>&client_id=VendorClient03
let http = CkoHttp()!
let req = CkoHttpRequest()!
req.httpVerb = "POST"
req.contentType = "application/x-www-form-urlencoded"
// Add the request params.
req.addParam(name: "grant_type", value: "urn:ietf:params:oauth:grant-type:jwt-bearer")
req.addParam(name: "assertion", value: jwtToken)
req.addParam(name: "client_id", value: "VendorClient03")
let resp = CkoHttpResponse()!
success = http.httpReq(url: "https://vnd.proda.humanservices.gov.au/mga/sps/oauth/oauth20/token", request: req, response: resp)
if success == false {
print("\(http.lastErrorText!)")
return
}
print("Response status code = \(resp.statusCode.intValue)")
print("Response body:")
print("\(resp.bodyStr!)")
}