Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Add PHP info

This getting started guide will show you how to get a JWT token, which then you will use to query the API. Examples are provided in C# .NET using a helper library, using C# .NET HttpClient, a PHP helper library, and in Ruby. The examples are a guideline for the steps, and not necessarily the complete or best practice for the platform.

Examples by platform

Info

The first thing you will need is a client Id and a client password, which you can request from the IIM team.

An example from the token server provider can be found here: https://identityserver4.readthedocs.io/en/release/quickstarts/1_client_credentials.html#creating-the-client


C# using helper library
Anchor
CLIB
CLIB

  1. You want to install the IdentityModel package from the NuGet feed into your client project.
  2. This will enable you to shortcut some of the URL mapping and discovery in the OAuth workflow. The following will do this work for you

    Code Block
    languagec#
    firstline1
    titleDiscovery of IdentityServer Metadata Code Example
    linenumberstrue
    collapsetrue
    // discover endpoints from metadata
    var disco = await DiscoveryClient.GetAsync("https://warden.data.uwaterloo.ca");
    if (disco.IsError)
    {
        Console.WriteLine(disco.Error);
        return;
    }
  3. Next you'll pass your credentials to the token server and receive back a JSON response that will include your authorization token.

    Code Block
    languagec#
    firstline1
    titleGetting Token from IdentityServer Code Example
    linenumberstrue
    collapsetrue
    var tokenClient = new TokenClient(disco.TokenEndpoint, "your_client_id", "your_client_password");
    var tokenResponse = await tokenClient.RequestClientCredentialsAsync("sourceapi");
    
    if (tokenResponse.IsError)
    {
        Console.WriteLine(tokenResponse.Error);
        return;
    }
    
    Console.WriteLine(tokenResponse.Json);
  4. Now with your valid token you'll be able to make calls against the API to get data.
  5. To send the access token to the API you typically use the HTTP Authorization header. This is done using the SetBearerToken extension method.

    Code Block
    languagec#
    firstline1
    titleCalling the API with Token Code Example
    linenumberstrue
    collapsetrue
    var client = new HttpClient();
    client.SetBearerToken(tokenResponse.AccessToken);
    
    var response = await client.GetAsync("https://api.data.uwaterloo.ca/api/v1/terms");
    if (!response.IsSuccessStatusCode)
    {
        Console.WriteLine(response.StatusCode);
    }
    else
    {
        var content = await response.Content.ReadAsStringAsync();
        Console.WriteLine(content);
    }

C# using HttpClient
Anchor
CHTTP
CHTTP

  1. Get a JSON response from Identity Server, that includes a JWT bearer token property.
  2. Include the JWT token in the authorization header.
  3. Query the API
Code Block
languagec#
titleC# HttpClient Code Example
linenumberstrue
collapsetrue
static void Main(string[] args)
        {
            // Create client to get Identity Server Response
            var client = new HttpClient();
            client.DefaultRequestHeaders.Accept.Clear();
            client.DefaultRequestHeaders.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));

            // Add required information to retrieve token (you will need to use your credentials)
            var content = new FormUrlEncodedContent(new[] {
                new KeyValuePair<string, string>("scope", "sourceapi"),
                new KeyValuePair<string, string>("grant_type", "client_credentials"),
                new KeyValuePair<string, string>("client_id", "your_client_id"),
                new KeyValuePair<string, string>("client_secret", "your_client_secret")
            });

            // Get response from a POST 
            var response = client.PostAsync("https://warden.data.uwaterloo.ca/connect/token", content).Result;
            response.EnsureSuccessStatusCode();

            // For our purposes we'll get the return as string (that is valid JSON) and then deserialize into an object
            var jsonResponseString = response.Content.ReadAsStringAsync().Result;
            var jsonObject = JsonConvert.DeserializeObject<JwtResponseBlock>(jsonResponseString);

            client.Dispose();

            // Query the API by setting the Authorization header value with the token we got
            client = new HttpClient();
            client.DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue("Bearer", jsonObject.access_token);

            // Retrieve Term informatino from API as an example
            var termsJsonString = client.GetStringAsync("https://api.data.uwaterloo.ca/api/v1/terms").Result;
            
        }

        private class JwtResponseBlock
        {
            public string access_token { get; set; }            
        }


PHP with helper library
Anchor
#PHP
#PHP

For PHP please see this GitHub repository of an OpenID client. Example 4 using Client Credentials is what you are looking to use, you can also see how the implementation is done if you wish to code it yourself.

Ruby
Anchor
#RUBY
#RUBY

Thank you to James from FEDS for this contribution.

Code Block
languageruby
titleRuby Getting Started
linenumberstrue
collapsetrue
require 'json'
require 'net/http'
require 'openssl'


client_id = 'your_client_id'
client_pwd = 'your_client_secret'

class MissingAccessTokenError < StandardError; end

def retrieve_jwt_token(client_id, client_pwd)
  token_url = 'https://warden.data.uwaterloo.ca'

  # get JWT token
  token_uri = URI("#{token_url}/connect/token")
  req = Net::HTTP::Post.new(token_uri)
  req.set_form_data(client_id: client_id, client_secret: client_pwd,
                    grant_type: 'client_credentials', scope: 'sourceapi')

  http = Net::HTTP.new(token_uri.host, token_uri.port)
  http.use_ssl = true
  http.verify_mode = OpenSSL::SSL::VERIFY_PEER

  response = http.request(req)

  json = JSON.parse response.body

  raise MissingAccessTokenError, 'Access Token is missing in response' unless json.key? 'access_token'

  json['access_token']
end


def terms(access_token)
  uri = URI.parse('https://api.data.uwaterloo.ca/api/v1/terms')
  request = Net::HTTP::Get.new(uri, {'Authorization' => "Bearer #{access_token}"})

  response = Net::HTTP.start(uri.host, uri.port, use_ssl: true) do |http|
    http.request(request)
  end

  puts response.body 
end

access_token = retrieve_jwt_token client_id, client_pwd
terms(access_token)