Using Node.js to get Bearer Token

On this page we will give you a small example of the Node,js code and the creation of the Node.js file/folder.
The Node.js can be used as an alternative way of getting the Bearer Token instead of using the C# method. The principle behind is the same execept one attribute needs to be added, since that has been confined within the class that is beign used in the C#. This attribute is the "secret" which has the value "secret" behind it. 

To create the Node.js structure and the needed packages, we advise you to create a folder on the same level as the highest ranked folder of your react project. With the file explorer you will enter said folder and open the command console within that folder. Then you will type "npm init -y" in the command console. This will generate the package-files. Afterwads create a new folder and add a JS file. In our case we call index.js.

In the example shown below, we have also included two examples of creating the normal API calls. This allows you to have added security as you dont show the bearer token which could be used in a malicous way from the 3rd party users. Therefore we determine it to be important to never show the berarer token to the user in case there is a power user lurking around. You can always create a second ticketino.com account and assign only the needed writes, without giving him any editing power of your events or intrusive sights in the statistics.

Within said file we will insert the following code. You can now access the newly created API on the determined url. In our case https://localhost:3001/token, since we dont have anything else defined in the .env file.

const express = require("express"); const axios = require("axios"); const https = require("https"); const PORT = process.env.PORT || 3001; const BASEURL = process.env.BASEURL || "https://accounts.ticketino.com/connect/token'"; const BASEAPI = process.env.BASEAPI || "https://api.ticketino"; var lastTimeDateTokenCreate = new Date(); const app = express(); const instance = axios.create({ httpsAgent: new https.Agent({ rejectUnauthorized: false, }), }); function getTokenAgain() { let tokenBody = { client_id: "public-access-api", username: "YourTicketinoAccount@ticketino.com", password: "NotSecurePassword", scope: "api", grant_type: "password", secret: "secret", }; let config = { headers: { "content-type": "application/x-www-form-urlencoded", }, }; instance .post(`${BASEURL}`, tokenBody, config) .then((result) => { axios.defaults.headers.common['Authorization'] = "Bearer " + result.data.access_token; lastTimeDateTokenCreate = new Date(); }); } function checkTime() { var createNewToken = new Date(); createNewToken.setDate(lastTimeDateTokenCreate.getDate() + 1); //checks if a new token needs to be created //expiration date is excactly 1 day if (createNewToken < new Date()) { return true; } else { return false; } } app.get("/token", (req, res) => { let tokenBody = { client_id: "public-access-api", username: "lars.terhofte@ticketino.com", password: "Sur99801", scope: "api", grant_type: "password", secret: "secret", }; let config = { headers: { "content-type": "application/x-www-form-urlencoded", }, }; instance .post(`${BASEURL}`, tokenBody, config) .then((result) => { res.status(200).json({ message: `${result.data.access_token}` }); axios.defaults.headers.common['Authorization'] = "Bearer " + result.data.access_token; lastTimeDateTokenCreate = new Date(); }); }); app.get("/get-event/:eventId", (req, res) => { //checks expiration Time on token if (checkTime) { getTokenAgain(); } //if unclear how to access the params or body : https://stackoverflow.com/questions/6912584/how-to-get-get-query-string-variables-in-express-js-on-node-js axios.get(`${BASEAPI}/Event/${req.params.eventId}`).then((result) => { res.status(200).json({ message: result.body }); }).catch((error) => { res.json({ message : "There has been an error!"}); }); }); app.get("/get-eventInfos/:eventId", (req, res) => { axios.get(`${BASEAPI}/Event/${req.params.eventId}/Infos`).then((result) => { res.status(200).json({ message: result.body }); }).catch((error) => { res.json({ message: "There has been an error" }); }); }) app.listen(PORT, () => { console.log(`Server listening on ${PORT}`); });