# Notebook Instructions

1. If you are new to Jupyter notebooks, please go through this introductory manual <a href='https://quantra.quantinsti.com/quantra-notebook' target="_blank">here</a>.
1. Any changes made in this notebook would be lost after you close the browser window. **You can download the notebook to save your work on your PC.**
1. Before running this notebook on your local PC:<br>
i.  You need to set up a Python environment and the relevant packages on your local PC. To do so, go through the section on "**Run Codes Locally on Your Machine**" in the course.<br>
ii. You need to **download the zip file available in the last unit** of this course. The zip file contains the data files and/or python modules that might be required to run this notebook.

# KiteConnect Authentication

This notebook serves as a step-by-step guide to understand the authentication workflow for your Zerodha account using Python.

As you've learnt in the earlier sections, the KiteConnect API is a set of REST-like APIs that gives you programmatic access to your Zerodha trading account. We will use `kiteconnect` Python package which provides an easy to use abstraction over the HTTP APIs. The HTTP calls have been converted to methods and their JSON responses are returned as native Python structures, for example, dicts, lists, bools etc. You can use it to fetch historical data, view your portfolio and funds, and most importantly, place and manage orders in real-time.

Before you can do any of this, you must first authenticate. Let's get started!

In this notebook, we will cover the following steps:

* **Step 1: Get API Key & Secret**
* **Step 2: Generate Login URL**
* **Step 3: Handle the Redirect & Get `request_token`**
* **Step 4: Generate Session & Get `access_token`**

<font color='red'>
<b>Note</b>: The access token generated using this method is valid for one day only. 
</font>

## Prerequisites

Before you begin, ensure you have:

* A Zerodha trading account.
* Subscribed to the KiteConnect API.
* Python 3 installed on your system.

## Installation

First, let's install the official Python client for kiteconnect. Open your terminal or command prompt and run the command: `pip install kiteconnect`.
If you are using Python Jupyter Notebook then you can use the below command to install `kiteconnect`.

## The Authentication Flow
The process works as follows:

<img src="https://d2a032ejo53cab.cloudfront.net/Course/Units/Mcq/UnitContent/PLHFVfBQ/Kite-4.jpg" width="500">

## Step-by-Step Implementation

### Step 1: Get API Key & Secret

In the previous video, you have created an app using your developer account. After creating the app, you will see it listed. Click on it to view your `api_key` and `api_secret`. In this step, you need to import the `KiteConnect` library and enter your API key and API secret in the cell below.

**Security Note:** Treat your `api_key` and `api_secret` like passwords. Do not hardcode them directly in your script if you plan to share it. Use environment variables or a configuration file.

In [1]:
# Import the KiteConnect library
from kiteconnect import KiteConnect

# --- CONFIGURATION ---
# It's highly recommended to use environment variables for your keys
# For this example, we'll assign them directly.
# In a real application, replace these with os.environ.get('YOUR_VARIABLE')
api_key = "YOUR_API_KEY"
api_secret = "YOUR_API_SECRET"

# Check if the keys are placeholders. If so, prompt the user.
if api_key == "YOUR_API_KEY" or api_secret == "YOUR_API_SECRET":
    print("ERROR: Please replace 'YOUR_API_KEY' and 'YOUR_API_SECRET' with your actual credentials.")

# Initialize KiteConnect client
kite = KiteConnect(api_key=api_key)

print("KiteConnect client initialized.")

KiteConnect client initialized.


<a id='url'></a>
### Step 2: Generate Login URL

Now, we'll generate the URL you need to visit to perform the manual login. To get this url we will use `login_url()`.

In [2]:
# Generate the login URL
login_url = kite.login_url()

print(f"Please login using this URL:\n{login_url}")

Please login using this URL:
https://kite.zerodha.com/connect/login?api_key=yu081ks6hg349x5s&v=3


<a id='redirect'></a>
### Step 3: Handle the Redirect & Get `request_token`

1.  **Copy the URL** generated in the previous step and **paste it into your web browser**.
2.  Log in with your Zerodha credentials (User ID, Password, and TOTP).
3.  After a successful login, the browser will be redirected to the `redirect_url` you specified when creating your app.
4.  The URL in your browser's address bar will now look something like this:

    `https://your-redirect-url.com/?status=success&request_token=THIS_IS_THE_TOKEN_YOU_NEED`

5.  **Manually copy the `request_token`** from the URL. It's a long string of letters and numbers.

Now, let's use that token in our code.

In [3]:
# After logging in, you will be redirected.
# Manually copy the request_token from the redirect URL and paste it here.
request_token = input("Enter the request_token from the redirect URL: ")

print(f"Received request_token: {request_token}...") # Print the request_token for verification

Enter the request_token from the redirect URL:  9M22rsIbr5936gXxIfUsdAS674loZaxE


Received request_token: 9M22rsIbr5936gXxIfUsdAS674loZaxE...



<a id='access'></a>
### Step 4: Generate Session & Get `access_token`

This is the final and most important step of the authentication process. We will exchange the `request_token` for the `access_token`. The response from this API call will contain the `access_token`, which we'll use for all future API calls.

In [4]:
try:
    # Generate a session using the request_token
    data = kite.generate_session(request_token, api_secret=api_secret)

    # Set the access token to the KiteConnect instance for future calls
    kite.set_access_token(data["access_token"])

    # Get user profile to display a welcome message
    profile = kite.profile()

    print(f"\nWelcome, {profile['user_name']}! Authentication successful.")
    print(f"Access Token: {data['access_token']}")
    
except Exception as e:
    print(f"Authentication failed: {e}")


Welcome, Authentication successful.
Access Token: AbJk1N1234wldRzcs2V1i4qMNbcFKcBj


### Conclusion and Next Steps

In this notebook we took you through the login flow, at the end of which, you got an access token. However, the manual login process is cumbersome to do every time you run your script. A common practice is to **store the `access_token`** after the first successful authentication and reuse it for subsequent runs on the same day. So after generating the session, you can save the `access_token` to a local file (e.g., `access_token.txt`). You will learn how to reuse this access token in the upcoming notebook.
<br><br>