Merge pull request #676 from akeneo/API-1895

feat(API-1895): create 'how to get app token' page

Author: samokiss

content/apps/apps-how-to-get-your-app-token.md

@@ -0,0 +1,170 @@
+# How to get your App token
+
+Implement the required parts of the App activation process and receive an App access token for querying your PIM API.
+
+<table class="tag-container">
+    <tr>
+        <td>Use case:</td>
+        <td>
+            <button aria-pressed="false" class="tag-selectable">
+                <div class="tag-color tag-color-light-blue"></div>
+                <div class="tag-label">App Workflow</div>
+            </button>
+        </td>
+    </tr>
+</table>
+
+## What you will learn
+In this tutorial, we provide a guide on how to implement the required parts of your App for the activation process based on OAuth 2.0 with Authorization Code.
+At the end of this tutorial, your App will receive an Access Token and will be able to call the REST API of a PXM Studio.
+
+::: warning
+Examples in this tutorial use languages without any framework or library and, consequently, don't follow all the recommended best practices. 
+We strongly encourage you to adapt those examples with the framework or library of your choice.
+:::
+
+::: tips
+If you prefer to start with a fonctionnal App (in PHP), have a look [here](/apps/app-developer-tools.html)
+:::
+
+## Step 1: Expose your activation and callback URLs
+
+First, your application must expose an **activation URL**.
+
+In our example, we won't do additional steps (like authentification), so we will launch the Authorization Request immediately in this Activation URL.
+
+!!!include(content/apps/create-app/activate-php.md)!!!
+!!!include(content/apps/create-app/activate-nodejs.md)!!!
+!!!include(content/apps/create-app/activate-python.md)!!!
+!!!include(content/apps/create-app/activate-java.md)!!!
+
+Then, your application must expose a **callback URL**.
+
+!!!include(content/apps/create-app/callback-php.md)!!!
+!!!include(content/apps/create-app/callback-nodejs.md)!!!
+!!!include(content/apps/create-app/callback-python.md)!!!
+!!!include(content/apps/create-app/callback-java.md)!!!
+
+
+::: info
+You can find more information about the authorization process and code challenge in the following documentation. 
+- [OAuth Authorization and authentication](/apps/authentication-and-authorization.html#)
+:::
+
+## Step 2: Get a public URL for your in development App
+
+::: info
+if you use a local version of PIM, skip this step
+:::
+
+Before proceeding to step 4 create a test App in your developer sandbox, you will need valid URLs to your App. This can be easily resolved with a tunnel to your localhost.
+
+There are several ways to create a tunnel to your localhost such as **localhost.run** or **ngrok**. We will use [localhost.run](https://localhost.run/) for its free and easy setup.
+
+### Initiate localhost tunnel
+
+Initiate localhost tunnel using the following command:
+
+```shell
+
+ssh -R 80:localhost:8080 localhost.run
+```
+
+The command above assumes that your local App is available on port 8080 but you can specify any port you want.
+
+
+### Extract URL from the output
+
+If everything goes well the command will output your public URL for your local app:
+
+```shell
+
+46672a93dd64.lhrtunnel.link tunneled with tls termination, https://46672a93dd64.lhrtunnel.link
+```
+
+Your local app is now available at `https://46672a93dd64.lhrtunnel.link`. You may now use it for your development.
+
+## Step 3: Get your test app credentials
+
+To get credentials for your app, you need to create a test app on your developer sandbox.
+
+First of all, go to `Connect`, then `App Store`
+
+### Permissions
+
+If you see `Create a test App` skip to [Connect app](https://www.notion.so/Guided-tutorial-How-to-get-your-app-token-022acb1113c1413faefaec3c8f3585a5), else please enable the `developer mode`.
+![Create a test app button](../img/apps/create-a-test-app-button.png)
+
+To do so, you need to:
+1. Go to `System`, then `Roles`
+2. Choose the role you use for your user
+3. In the `Permissions` tab, scroll down and search for the `Developer mode` submenu
+4. Select `Manage test apps`
+5. Don't forget to save your modifications
+
+### Connect app
+
+To create a test App:
+1. On the top right corner, click on `Create a test App`
+2. Fill in all the required information
+   ![Test_app_creation_credentials](../img/apps/test-app-creation-info.png)
+3. Then click on `Create`
+4. Copy/paste credentials in your app configuration file
+   ![Test_app_creation_credentials](../img/apps/test-app-creation-credentials.png)
+5. And click on `Done`
+6. Your test App appears on the App Store page
+
+
+## Step 4: Connect your test App and access its settings
+
+![Test app on the App Store](../img/apps/marketplace-with-test-app.png)
+
+Connecting a test App is like connecting a published App. 
+
+1. Launch your APP
+2. Click on `Connect`
+3. Your App opens in a new tab of your browser
+4. Launch the connection process from your App
+5. Follow all the activation process steps, then `Confirm`
+6. Your test App is now connected with Akeneo PIM! 🔗
+
+Now that your App is connected, you can enjoy all the available App features from the Akeneo PXM Studio UI and test that your App works well. 
+
+To access the settings of your connected App on Akeneo PIM, please go to `Connected Apps`, then click on `Manage App`. 
+You can also open your App from Akeneo PIM UI, to do so, click on `Open app`. 
+
+![Connected test app on Apps](../img/apps/connected-test-app.png)
+
+::: info
+To know more about the step-by-step activation process, please read our article:  
+[How to connect an App?](https://help.akeneo.com/pim/serenity/articles/how-to-connect-my-pim-with-apps.html#how-to-connect-an-app)
+:::
+
+## Step 5: Use your access token to call the API
+
+At the end of this process, you receive the following response with an `access_token`:
+
+```json
+
+{
+  "access_token": "Y2YyYjM1ZjMyMmZlZmE5Yzg0OTNiYjRjZTJjNjk0ZTUxYTE0NWI5Zm",
+  "token_type": "bearer",
+  "scope": "read_products write_products"
+}
+```
+
+You can use this token to call the Akeneo PIM REST API.
+
+<div class="block-next-steps">
+    <img src="../img/illustrations/illus--Attribute.svg" width="140px">
+    <div class="block-next-steps-column">
+        <div class="block-next-steps-title">Next Steps</div>
+        <div class="block-next-steps-text">Now that you collected your categories, we advise you to follow</div>
+        <div>
+            <ul>
+                <li><a href="https://api.akeneo.com/apps/overview.html">Learn more about Apps</a></li>
+                <li><a href="https://api-staging.akeneo.com/api-reference-index.html">Explore the REST API reference</a></li>
+            </ul>
+        </div>
+    </div>
+</div>

content/apps/create-app/activate-php.md

@@ -2,8 +2,9 @@
 
 // Let's create an `activate.php` file
 
-const OAUTH_CLIENT_ID = '<CLIENT_ID>';
-const OAUTH_SCOPES = 'read_products write_products';
+$oauthClientId = '<CLIENT_ID>';
+$getAuthorizationUrl = '%s/connect/apps/v1/authorize?%s';
+$scopes = ['read_products', 'write_products', 'delete_products'];
 
 session_start();
 
@@ -23,14 +24,13 @@ $_SESSION['pim_url'] = $pimUrl;
 // https://datatracker.ietf.org/doc/html/rfc6749#section-4.1.1
 $authorizeUrlParams = http_build_query([
     'response_type' => 'code',
-    'client_id' => OAUTH_CLIENT_ID,
-    'scope' => OAUTH_SCOPES,
+    'client_id' => $oauthClientId,
+    'scope' => implode(' ', $scopes),
     'state' => $state,
 ]);
 
 // Build the url for the Authorization Request using the PIM URL
-$authorizeUrl = $pimUrl . '/connect/apps/v1/authorize?' . $authorizeUrlParams;
-
-// Redirect the user to the Authorization URL
-header('Location: ' . $authorizeUrl);
+$url = sprintf($getAuthorizationUrl, $pimUrl, $authorizeUrlParams);
+header('Location: '.$url);
+exit;
 ```

content/apps/create-app/callback-php.md

@@ -1,9 +1,12 @@
 ```php [callback:PHP]
 
-// Let's create a `callback.php` file:
+// Let's create a `callback.php` file
 
-const OAUTH_CLIENT_ID = '<CLIENT_ID>';
-const OAUTH_CLIENT_SECRET = '<CLIENT_SECRET>';
+require_once __DIR__ . '/../vendor/autoload.php';
+
+$oauthClientId = '<CLIENT_ID>';
+$oauthClientSecret = '<CLIENT_SECRET>';
+$generateTokenUrl = '/connect/apps/v1/oauth2/token';
 
 session_start();
 
@@ -24,25 +27,29 @@ if (empty($pimUrl)) {
     exit('No PIM url in session');
 }
 
+// Generate code for token request
 $codeIdentifier = bin2hex(random_bytes(30));
-$codeChallenge = hash('sha256', $codeIdentifier . OAUTH_CLIENT_SECRET);
+$codeChallenge = hash('sha256', $codeIdentifier . $oauthClientSecret);
 
-$accessTokenUrl = $pimUrl . '/connect/apps/v1/oauth2/token';
+// Build form data to post
 $accessTokenRequestPayload = [
-    'client_id' => OAUTH_CLIENT_ID,
+    'client_id' => $oauthClientId,
     'code_identifier' => $codeIdentifier,
     'code_challenge' => $codeChallenge,
     'code' => $authorizationCode,
     'grant_type' => 'authorization_code',
 ];
 
-// Do a POST request on the token endpoint
-$ch = curl_init();
-curl_setopt($ch, CURLOPT_URL, $accessTokenUrl);
-curl_setopt($ch, CURLOPT_POST, true);
-curl_setopt($ch, CURLOPT_POSTFIELDS, $accessTokenRequestPayload);
-curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
-$response = json_decode(curl_exec($ch), true);
+// If you haven't set your client yet, please install Guzzle by following the official documentation:
+// https://docs.guzzlephp.org/en/stable/overview.html#installation
+$client = new GuzzleHttp\Client(['base_uri' => $pimUrl]);
+
+// Make an authenticated call to the API
+$accessTokenUrl = $pimUrl . $generateTokenUrl;
+$response = $client->post($accessTokenUrl, ['form_params' => $accessTokenRequestPayload]);
+
+// Convert json response to array
+$contents = json_decode($response->getBody()->getContents(), true);
 
-echo $response['access_token'];
+var_export($contents);
 ```

content/apps/how-to-retrieve-pim-structure.md

@@ -36,7 +36,7 @@ Retrieve the PIM structure through a channel resource. This is usually the requi
         <img src="../img/illustrations/illus--Attributegroup.svg" width="110px">
         <div class="block-requirements-steps">
             <ul>
-                <li>Step 1. <a href="apps-getting-started.html" target="_blank" rel="noopener noreferrer">Get your App token tutorial</a></li>
+                <li>Step 1. <a href="apps-how-to-get-your-app-token.html" target="_blank" rel="noopener noreferrer">Get your App token tutorial</a></li>
             </ul>
         </div>
     </div>
@@ -61,7 +61,7 @@ If you haven't set your client yet, please:
 - Install Guzzle by following the <a href="https://docs.guzzlephp.org/en/stable/overview.html#installation" target="_blank" rel="noopener noreferrer">official documentation</a>
 - Set your client for querying Akeneo API as follows:
 
-```php
+```php  [activate:PHP]
 
 $pimUrl = 'https://url-of-your-pim.com';
 $appToken = 'your_app_token'; // Token provided during oAuth steps

content/apps/apps-getting-started.md renamed to content/apps/old/apps-getting-started.md

@@ -26,7 +26,7 @@ Feel free to contribute with languages we're not experts at.
 
 ## Requirements
 - You have your [App developer starter kit](/apps/overview.html#app-developer-starter-kit)
-- You understand [what's an Akeneo App](/apps/apps-getting-started.html#whats-an-akeneo-app) and [how they fit into Akeneo PXM Studio](/apps/apps-getting-started.html#how-apps-fit-into-akeneo-pxm-studio)
+- You understand [what's an Akeneo App](/apps/overview.html#whats-an-akeneo-app) and [how they fit into Akeneo PXM Studio](/apps/overview.html#how-apps-fit-into-akeneo-pxm-studio)
 
 ## Step 1: Expose your activation and callback URLs
 
@@ -85,7 +85,7 @@ Your local app is now available at `https://46672a93dd64.lhrtunnel.link`. You ma
 
 To get credentials for your app, you need to create a test app on your developer sandbox.
 
-![Create a test app button](../img/apps/create-a-test-app-button.png)
+![Create a test app button](../../img/apps/create-a-test-app-button.png)
 
 To create a test App: 
 1. Go to `Connect`, then `App Store`
@@ -96,7 +96,7 @@ To create a test App:
 6. And click on `Done`
 7. Your test App appears on the App Store page
 
-![Test app creation](../img/apps/test-app-creation.png)
+![Test app creation](../../img/apps/test-app-creation.png)
 
 
 If you don't see the `Create a test App` button, please enable the `developer mode`.  
@@ -110,7 +110,7 @@ To do so, you need to:
 
 ## Step 4: Connect your test App and access its settings
 
-![Test app on the App Store](../img/apps/marketplace-with-test-app.png)
+![Test app on the App Store](../../img/apps/marketplace-with-test-app.png)
 
 Connecting a test App is like connecting a published App. 
 
@@ -125,7 +125,7 @@ Now that your App is connected, you can enjoy all the available App features fro
 To access the settings of your connected App on Akeneo PIM, please go to `Connected Apps`, then click on `Manage App`. 
 You can also open your App from Akeneo PIM UI, to do so, click on `Open app`. 
 
-![Connected test app on Apps](../img/apps/connected-test-app.png)
+![Connected test app on Apps](../../img/apps/connected-test-app.png)
 
 ::: info
 To know more about the step-by-step activation process, please read our article:  

content/apps/overview.md

@@ -77,6 +77,6 @@ Your app is good to go?
 
 ## Next steps
 
-- Learn more about how to [create an app](/apps/apps-getting-started.html#create-an-app)
+- Learn more about how to [create an app](/apps/apps-how-to-get-your-app-token.html#how-to-get-app-token)
 - Read our documentation about [authorization and authentication](/apps/authentication-and-authorization.html)
 - Learn how to use [catalogs](/apps/catalogs.html) to retrieve product data

content/img/apps/test-app-creation-credentials.png

@@ -154,7 +154,7 @@
                                                             <code>Authorization</code>
                                                             <a href="#" data-placement="top" data-toggle="tooltip" title="Required header"> <i class="fa fa-asterisk fa-danger"></i> </a>
                                                         {{#if x-app-token}}
-                                                            <small>&bull; Equal to 'Bearer xxx', 'xxx' being the App authentication token, see <a href="/apps/apps-getting-started.html" target="_blank">documentation for getting an app token</a></small>
+                                                            <small>&bull; Equal to 'Bearer xxx', 'xxx' being the App authentication token, see <a href="/apps/apps-how-to-get-your-app-token.html" target="_blank">documentation for getting an app token</a></small>
                                                         {{else}}
                                                             <small>&bull; Equal to 'Bearer xxx', `xxx` being the authentication token, see <a href="/documentation/authentication.html">Authentication</a> section</small>
                                                         {{/if}}

content/img/apps/test-app-creation-info.png

@@ -9,7 +9,7 @@
                             <div class="hidden-xs hidden-sm col-md-6 col-lg-5">
                                 <h1 class="emphasis">Build Apps to ease the connection with Akeneo PIM</h1>
                                 <p>Follow our step-by-step guide to create an app and use OAuth 2.0</p>
-                                <a class="btn btn-primary" href="/apps/apps-getting-started.html">Build an App</a>
+                                <a class="btn btn-primary" href="/apps/apps-how-to-get-your-app-token.html">Build an App</a>
                             </div>
                             <div class="hidden-xs hidden-sm col-md-6 col-lg-7">
                                 <img class="img-responsive img-banner" src="img/illustrations/illus--main-banner-apps.svg"></img>
@@ -19,7 +19,7 @@
                             <div class="hidden-xs hidden-md hidden-lg col-sm-6">
                                 <h1 class="emphasis">Build Apps to ease the connection with Akeneo PIM</h1>
                                 <p>Follow our step-by-step guide to create an app and use OAuth 2.0</p>
-                                <a class="btn btn-primary" href="/apps/apps-getting-started.html">Build an App</a>
+                                <a class="btn btn-primary" href="/apps/apps-how-to-get-your-app-token.html">How to get App token</a>
                             </div>
                             <div class="hidden-xs hidden-md hidden-lg col-sm-6">
                                 <img class="img-responsive img-banner" src="img/illustrations/illus--main-banner-apps.svg"></img>
@@ -32,7 +32,7 @@
                             <div class="hidden-sm hidden-md hidden-lg col-xs-12">
                                 <h1 class="emphasis">Build Apps to ease the connection with Akeneo PIM</h1>
                                 <p>Follow our step-by-step guide to create an app and use OAuth 2.0</p>
-                                <a class="btn btn-primary" href="/apps/apps-getting-started.html">Build an App</a>
+                                <a class="btn btn-primary" href="/apps/apps-how-to-get-your-app-token.html">How to get App token</a>
                             </div>
                         </div>
                     </div>