In [18]:
import requests
import base64
import os
from dotenv import load_dotenv


In [19]:

def get_kroger_headers():
    """
    Load Kroger API credentials from .env and return headers for API calls
    Returns: dict with Authorization header using OAuth2 token
    """
    # Load credentials from .env
    load_dotenv()
    client_id = os.getenv('KROGER_CLIENT_ID')
    client_secret = os.getenv('KROGER_CLIENT_SECRET')
    
    # Create base64 encoded auth string
    auth_string = f"{client_id}:{client_secret}"
    auth_bytes = auth_string.encode('ascii')
    base64_auth = base64.b64encode(auth_bytes).decode('ascii')
    
    # Get access token
    token_url = 'https://api.kroger.com/v1/connect/oauth2/token'
    token_headers = {
        'Content-Type': 'application/x-www-form-urlencoded',
        'Authorization': f'Basic {base64_auth}'
    }
    token_data = {'grant_type': 'client_credentials', 'scope': 'product.compact'}
    
    token_response = requests.post(token_url, headers=token_headers, data=token_data)
    access_token = token_response.json()['access_token']
    
    # Return headers for API calls
    return {
        'Authorization': f'Bearer {access_token}',
        'Accept': 'application/json'
    }

# Test the headers
headers = get_kroger_headers()
print("Headers ready for API calls!")

Headers ready for API calls!


In [20]:
def get_locations_by_zip(zip_code, headers, radius_miles=10, limit=5):
    """
    Get Kroger store locations by ZIP code
    Args:
        zip_code (str): ZIP code to search
        headers (dict): API headers from get_kroger_headers()
        radius_miles (int): Search radius in miles (default 10)
        limit (int): Maximum number of results (default 5)
    Returns:
        list: Store locations with their details
    """
    base_url = 'https://api.kroger.com/v1'
    params = {
        'filter.zipCode.near': zip_code,
        'filter.radiusInMiles': radius_miles,
        'filter.limit': limit
    }
    
    response = requests.get(
        f'{base_url}/locations',
        headers=headers,
        params=params
    )
    
    if response.status_code == 200:
        return response.json()['data']
    else:
        print(f"Error: {response.status_code}")
        print(response.text)
        return None

# Example usage
headers = get_kroger_headers()
locations = get_locations_by_zip('60642', headers)

In [26]:
def get_products_at_location(location_id, headers, search_term="", limit=50):
    """
    Get available, deliverable products at a specific Kroger location
    Args:
        location_id (str): Kroger store location ID
        headers (dict): API headers from get_kroger_headers()
        search_term (str): Term to search for
        limit (int): Maximum number of results (default 50)
    Returns:
        list: Available products with their details
    """
    base_url = 'https://api.kroger.com/v1'
    params = {
        'filter.locationId': location_id,
        'filter.limit': limit,
        'filter.term': search_term,
        'filter.fulfillment': 'delivery',
        'filter.sortBy': 'price'
    }
    
    response = requests.get(
        f'{base_url}/products',
        headers=headers,
        params=params
    )
    
    if response.status_code == 200:
        # Filter for only available items
        products = response.json()['data']
        in_stock_products = []
        
        for product in products:
            if 'items' in product and product['items']:
                item = product['items'][0]
                inventory = item.get('inventory', {})
                stock_level = inventory.get('stockLevel', 'UNKNOWN')
                
                # Only include products that are in stock
                if stock_level not in ['OUT_OF_STOCK', 'UNKNOWN']:
                    in_stock_products.append(product)
        
        return in_stock_products
    else:
        print(f"Error: {response.status_code}")
        print(response.text)
        return None



In [31]:
# Example usage
headers = get_kroger_headers()

# First get a location ID
locations = get_locations_by_zip('60642', headers, limit=1)
if locations:
    location_id = locations[0]['locationId']
    
    # Search for products at that location
    search_terms = ["chicken breast", "chicken stock", "shallots"]
    
    for term in search_terms:
        print(f"\nSearching for {term}:")
        products = get_products_at_location(location_id, headers, search_term=term)
        
        if products:
            for product in products[:10]:  # Show first 5 products
                print(f"\nName: {product['description']}")
                if 'items' in product and product['items']:
                    item = product['items'][0]  # Get first variation
                    price_info = item.get('price', {})
                    regular_price = price_info.get('regular', 'N/A')
                    promo_price = price_info.get('promo')

                    # Show both regular and promo price if available
                    price_str = f"${regular_price}"
                    if promo_price:
                        price_str += f" (On sale: ${promo_price})"
                    
                    print(f"Price: {price_str}")
                    print(f"Size: {item.get('size', 'N/A')}")
                    
                    # Show inventory status
                    inventory = item.get('inventory', {})
                    stock_level = inventory.get('stockLevel', 'UNKNOWN')
                    print(f"Stock Level: {stock_level}")


Searching for chicken breast:

Name: Simple Truth® All Natural Boneless Skinless Fresh Chicken Breast
Price: $5.99
Size: 1 lb
Stock Level: HIGH

Name: PERDUE® Fresh Boneless Skinless Chicken Breasts Value Pack
Price: $4.49
Size: 1 lb
Stock Level: HIGH

Name: Boneless Chicken Breasts
Price: $5.99 (On sale: $4.99)
Size: 1 lb
Stock Level: TEMPORARILY_OUT_OF_STOCK

Name: Simple Truth Organic® Ready to Cook Organic Chicken Tenders Air Chilled
Price: $8.99
Size: 1 lb
Stock Level: TEMPORARILY_OUT_OF_STOCK

Name: PERDUE® HARVESTLAND® Free Range Boneless Skinless Chicken Breasts
Price: $5.49
Size: 1 lb
Stock Level: HIGH

Name: Simple Truth Organic® Boneless Skinless Fresh Chicken Breast
Price: $7.99
Size: 1 lb
Stock Level: TEMPORARILY_OUT_OF_STOCK

Name: Just Bare® Lightly Breaded Chicken Breasts
Price: $12.99
Size: 24 oz
Stock Level: LOW

Name: Miller Poultry Boneless Skinless Fresh Chicken Breast
Price: $6.29
Size: 1 lb
Stock Level: HIGH

Name: Simple Truth® Natural Thin-Sliced Boneless and 

In [33]:
products

[{'productId': '0007981300027',
  'upc': '0007981300027',
  'productPageURI': '/p/boursin-shallot-chive-gourmet-cheese-spread-5-3oz/0007981300027?cid=dis.api.tpi_products-api_20240521_b:all_c:p_t:kitchenelf-243261243',
  'aisleLocations': [],
  'brand': 'Boursin',
  'categories': ['Deli', 'Deli', 'Deli'],
  'countryOrigin': 'UNITED STATES',
  'description': 'Boursin® Shallot & Chive Gourmet Cheese Spread, 5.3oz',
  'images': [{'perspective': 'back',
    'sizes': [{'size': 'xlarge',
      'url': 'https://www.kroger.com/product/images/xlarge/back/0007981300027'},
     {'size': 'large',
      'url': 'https://www.kroger.com/product/images/large/back/0007981300027'},
     {'size': 'medium',
      'url': 'https://www.kroger.com/product/images/medium/back/0007981300027'},
     {'size': 'small',
      'url': 'https://www.kroger.com/product/images/small/back/0007981300027'},
     {'size': 'thumbnail',
      'url': 'https://www.kroger.com/product/images/thumbnail/back/0007981300027'}]},
   {'per

In [38]:
def get_user_token(email, password):
    """
    Get user-specific OAuth token for cart operations
    """
    load_dotenv()
    client_id = os.getenv('KROGER_CLIENT_ID')
    client_secret = os.getenv('KROGER_CLIENT_SECRET')
    
    # Create base64 encoded auth string
    auth_string = f"{client_id}:{client_secret}"
    auth_bytes = auth_string.encode('ascii')
    base64_auth = base64.b64encode(auth_bytes).decode('ascii')
    
    token_url = 'https://api.kroger.com/v1/connect/oauth2/token'
    token_headers = {
        'Content-Type': 'application/x-www-form-urlencoded',
        'Authorization': f'Basic {base64_auth}'
    }
    
    token_data = {
        'grant_type': 'password',
        'username': email,
        'password': password,
        'scope': 'profile.compact cart.basic:write'  # Changed scope order and format
    }
    
    response = requests.post(token_url, headers=token_headers, data=token_data)
    if response.status_code == 200:
        return response.json()['access_token']
    else:
        print(f"Error getting user token: {response.status_code}")
        print(response.text)
        return None

def add_to_cart(user_token, location_id, items):
    """
    Add items to user's cart
    Args:
        user_token (str): User-specific OAuth token
        location_id (str): Store location ID
        items (list): List of dicts with product info:
            [{'productId': '1234', 'quantity': 1}, ...]
    """
    base_url = 'https://api.kroger.com/v1'
    headers = {
        'Authorization': f'Bearer {user_token}',
        'Content-Type': 'application/json'
    }
    
    cart_data = {
        'items': items
    }
    
    response = requests.put(
        f'{base_url}/cart/add',
        headers=headers,
        json=cart_data
    )
    
    if response.status_code == 200:
        print("Items successfully added to cart!")
        return response.json()
    else:
        print(f"Error adding to cart: {response.status_code}")
        print(response.text)
        return None

In [39]:
def add_items_to_cart_by_zip(email, password, zip_code, search_terms):
    """
    Complete flow to search products and add to cart:
    1. Get nearest store from zip code
    2. Search for products
    3. Authenticate user
    4. Add items to cart
    """
    # Get initial API access for location/product search
    headers = get_kroger_headers()
    
    # Find nearest store
    locations = get_locations_by_zip(zip_code, headers, limit=1)
    if not locations:
        print("No stores found in your area")
        return
    
    location_id = locations[0]['locationId']
    store_name = locations[0]['name']
    print(f"Using store: {store_name} (ID: {location_id})")
    
    # Search for products and build cart
    items_to_add = []
    for term in search_terms:
        products = get_products_at_location(location_id, headers, search_term=term)
        if products:
            # Add first available product for each search term
            product = products[0]  # Gets the cheapest one since we're sorting by price
            items_to_add.append({
                "productId": product['productId'],
                "quantity": 1
            })
            print(f"Found {product['description']} for ${product['items'][0]['price']['regular']}")
        else:
            print(f"No products found for '{term}'")
    
    if not items_to_add:
        print("No products found to add to cart")
        return
    
    # Get user token and add to cart
    user_token = get_user_token(email, password)
    if user_token:
        result = add_to_cart(user_token, location_id, items_to_add)
        return result
    else:
        print("Failed to authenticate user")
        return None

# Example usage
search_terms = ["chicken breast", "chicken stock", "shallots"]
email = "anshul.tibrewal2203@gmail.com"  # Replace with actual email
password = "Anshul2@"        # Replace with actual password
zip_code = "60642"               # Replace with user's zip code

result = add_items_to_cart_by_zip(email, password, zip_code, search_terms)

Using store: Marianos - Marianos Ukrainian Village (ID: 53100527)
Found Simple Truth® All Natural Boneless Skinless Fresh Chicken Breast for $5.99
Found Swanson® 100% Natural Chicken Stock for $4.39
Found Boursin® Shallot & Chive Gourmet Cheese Spread, 5.3oz for $6.99
Error getting user token: 400
{"error":"invalid_scope","error_description":"scope cart.basic:write cannot be used for grant_type password"}
Failed to authenticate user


In [40]:
def debug_user_auth(email, password):
    """
    Debug function to test user authentication with minimal scopes
    """
    load_dotenv()
    client_id = os.getenv('KROGER_CLIENT_ID')
    client_secret = os.getenv('KROGER_CLIENT_SECRET')
    
    # Print client info (masked) for debugging
    print(f"Client ID: {client_id[:4]}...{client_id[-4:]}")
    print(f"Client Secret exists: {bool(client_secret)}")
    
    # Create base64 encoded auth string
    auth_string = f"{client_id}:{client_secret}"
    auth_bytes = auth_string.encode('ascii')
    base64_auth = base64.b64encode(auth_bytes).decode('ascii')
    
    token_url = 'https://api.kroger.com/v1/connect/oauth2/token'
    token_headers = {
        'Content-Type': 'application/x-www-form-urlencoded',
        'Authorization': f'Basic {base64_auth}'
    }
    
    # Try with minimal scope first
    token_data = {
        'grant_type': 'password',
        'username': email,
        'password': password,
        'scope': 'profile.compact'
    }
    
    print("\nAttempting authentication...")
    print(f"Headers: {token_headers}")
    print(f"Data: {token_data}")
    
    response = requests.post(token_url, headers=token_headers, data=token_data)
    print(f"\nResponse Status: {response.status_code}")
    print(f"Response Body: {response.text}")
    
    if response.status_code == 200:
        token_info = response.json()
        print("\nSuccess! Token info:")
        print(f"Access Token: {token_info['access_token'][:10]}...")
        print(f"Token Type: {token_info.get('token_type')}")
        print(f"Expires In: {token_info.get('expires_in')} seconds")
        print(f"Granted Scopes: {token_info.get('scope')}")
        return token_info
    else:
        print("\nAuthentication failed!")
        return None

# Test the authentication
email = "anshul.tibrewal2203@gmail.com"  # Replace with actual email
password = "Anshul2@"        # Replace with actual password

result = debug_user_auth(email, password)

Client ID: kitc...3244
Client Secret exists: True

Attempting authentication...
Headers: {'Content-Type': 'application/x-www-form-urlencoded', 'Authorization': 'Basic a2l0Y2hlbmVsZi0yNDMyNjEyNDMwMzQyNDZiNzU1NjM3NDgyZTY4NjYzMTU0NDQ0MjYyNjY1MDUzNjM0YTQ3MzE2YjRmN2E3NDc0NGM2NzRmMzUzODRiMzA3NDYyNzM1NjUzNzI2OTM3NmQ0MTQyNmUzNzZlNGI0NzRhNGQ0YzQ1NjU1MzY2MjA5MTMwNDg1OTkzMjQ0OjFkQ0pheEdxaVhsTlo5TDJfTjJ0cTRNeE83Z2poMUR3SVRkaHA0bmY='}
Data: {'grant_type': 'password', 'username': 'anshul.tibrewal2203@gmail.com', 'password': 'Anshul2@', 'scope': 'profile.compact'}

Response Status: 403
Response Body: {"error":"invalid_client","error_description":"client does not have access to password grant_type"}

Authentication failed!


In [44]:
import secrets
from urllib.parse import urlencode

def start_auth_flow():
    """
    Start the OAuth2 authorization code flow for Kroger
    """
    load_dotenv()
    client_id = os.getenv('KROGER_CLIENT_ID')
    redirect_uri = "http://localhost:8000/callback"  # Must match what's in Kroger developer portal
    
    # Generate a random state value for security
    state = secrets.token_urlsafe(16)
    
    # Build authorization URL
    auth_params = {
        'scope': 'profile.compact cart.basic:write',
        'response_type': 'code',
        'client_id': client_id,
        'redirect_uri': redirect_uri,
        'state': state
    }
    
    auth_url = f"https://api.kroger.com/v1/connect/oauth2/authorize?{urlencode(auth_params)}"
    
    print("Please visit this URL to authorize the application:")
    print(auth_url)
    print("\nAfter authorization, you'll be redirected to your redirect URI with a code parameter")
    
    return state

def exchange_code_for_token(auth_code):
    """
    Exchange the authorization code for an access token
    """
    load_dotenv()
    client_id = os.getenv('KROGER_CLIENT_ID')
    client_secret = os.getenv('KROGER_CLIENT_SECRET')
    redirect_uri = "http://localhost:8000/callback"
    
    # Create base64 encoded auth string
    auth_string = f"{client_id}:{client_secret}"
    auth_bytes = auth_string.encode('ascii')
    base64_auth = base64.b64encode(auth_bytes).decode('ascii')
    
    token_url = 'https://api.kroger.com/v1/connect/oauth2/token'
    headers = {
        'Content-Type': 'application/x-www-form-urlencoded',
        'Authorization': f'Basic {base64_auth}'
    }
    
    data = {
        'grant_type': 'authorization_code',
        'code': auth_code,
        'redirect_uri': redirect_uri
    }
    
    response = requests.post(token_url, headers=headers, data=data)
    if response.status_code == 200:
        return response.json()
    else:
        print(f"Error: {response.status_code}")
        print(response.text)
        return None

# Start the flow
state = start_auth_flow()

# After user authorizes and you get the code from the redirect URL, use:
# code = "the_code_from_redirect"
# token_response = exchange_code_for_token(code)

Please visit this URL to authorize the application:
https://api.kroger.com/v1/connect/oauth2/authorize?scope=profile.compact+cart.basic%3Awrite&response_type=code&client_id=kitchenelf-243261243034246b755637482e68663154444262665053634a47316b4f7a74744c674f35384b3074627356537269376d41426e376e4b474a4d4c45655366209130485993244&redirect_uri=http%3A%2F%2Flocalhost%3A8000%2Fcallback&state=ogIrYRByt672BEUyebJLdA

After authorization, you'll be redirected to your redirect URI with a code parameter
