Delphi DLL
Delphi DLL
Azure AD Service-to-service access token request
See more Azure OAuth2 Examples
Send an Azure AD service-to-service token request to get an access token using a shared secret.Chilkat Delphi DLL Downloads
uses
Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics,
Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Http, HttpRequest, HttpResponse, JsonObject;
...
procedure TForm1.Button1Click(Sender: TObject);
var
success: Boolean;
http: HCkHttp;
req: HCkHttpRequest;
resp: HCkHttpResponse;
respStatusCode: Integer;
json: HCkJsonObject;
token_type: PWideChar;
expires_in: PWideChar;
ext_expires_in: PWideChar;
expires_on: PWideChar;
not_before: PWideChar;
resource: PWideChar;
access_token: PWideChar;
begin
success := False;
// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
http := CkHttp_Create();
// To see the exact HTTP request sent and the response, set the SessionLogFilename property:
CkHttp_putSessionLogFilename(http,'qa_output/chilkatHttpLog.txt');
req := CkHttpRequest_Create();
// Set the following request params:
// grant_type required Specifies the requested grant type. In a Client Credentials Grant flow, the value must be client_credentials.
//
// client_id required Specifies the Azure AD client id of the calling web service.
// To find the calling application's client ID, in the Azure portal, click Azure Active Directory, click App registrations, click the application.
// The client_id is the Application ID
//
// client_secret required Enter a key registered for the calling web service or daemon application in Azure AD.
// To create a key, in the Azure portal, click Azure Active Directory, click App registrations, click the application, click Settings, click Keys, and add a Key.
// URL-encode this secret when providing it.
//
// resource required Enter the App ID URI of the receiving web service. To find the App ID URI, in the Azure portal, click Azure Active Directory,
// click App registrations, click the service application, and then click Settings and Properties.
CkHttpRequest_AddParam(req,'grant_type','client_credentials');
CkHttpRequest_AddParam(req,'client_id','MY_CLIENT_ID');
CkHttpRequest_AddParam(req,'client_secret','MY_CLIENT_SECRET');
CkHttpRequest_AddParam(req,'resource','https://service.contoso.com/');
CkHttpRequest_putHttpVerb(req,'POST');
CkHttpRequest_putContentType(req,'application/x-www-form-urlencoded');
resp := CkHttpResponse_Create();
success := CkHttp_HttpReq(http,'https://login.microsoftonline.com/<tenant_id>/oauth2/token',req,resp);
if (success = False) then
begin
Memo1.Lines.Add(CkHttp__lastErrorText(http));
Exit;
end;
respStatusCode := CkHttpResponse_getStatusCode(resp);
Memo1.Lines.Add('Response Status Code = ' + IntToStr(respStatusCode));
json := CkJsonObject_Create();
CkJsonObject_putEmitCompact(json,False);
CkJsonObject_Load(json,CkHttpResponse__bodyStr(resp));
Memo1.Lines.Add('Response JSON:');
Memo1.Lines.Add(CkJsonObject__emit(json));
if (respStatusCode >= 400) then
begin
Memo1.Lines.Add('Response Header:');
Memo1.Lines.Add(CkHttpResponse__header(resp));
Memo1.Lines.Add('Failed.');
Exit;
end;
// Sample response:
// {
// "token_type": "Bearer",
// "expires_in": "3599",
// "ext_expires_in": "3599",
// "expires_on": "1570059833",
// "not_before": "1570055933",
// "resource": "https://adminchilkatsoft.onmicrosoft.com/eb1b8ced-76b7-4845-aec5-d3e91776e345",
// "access_token": "eyJ0eXAiO ... pmgw"
// }
// To get the items from the JSON....
token_type := CkJsonObject__stringOf(json,'token_type');
expires_in := CkJsonObject__stringOf(json,'expires_in');
ext_expires_in := CkJsonObject__stringOf(json,'ext_expires_in');
expires_on := CkJsonObject__stringOf(json,'expires_on');
not_before := CkJsonObject__stringOf(json,'not_before');
resource := CkJsonObject__stringOf(json,'resource');
access_token := CkJsonObject__stringOf(json,'access_token');
CkHttp_Dispose(http);
CkHttpRequest_Dispose(req);
CkHttpResponse_Dispose(resp);
CkJsonObject_Dispose(json);
end;