Sample code for 30+ languages & platforms
Delphi DLL

MyInvois Malaysia Login as Intermediary System

See more Malaysia MyInvois Examples

Demonstrates how to get an OAuth2 access token with an intermediary that is representing a taxpayer (acting on behalf of a specific taxpayer). The OAuth2 access token can then be used to access MyInvois protected APIs.

Chilkat Delphi DLL Downloads

Delphi DLL
uses
    Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics,
    Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Http, HttpRequest, HttpResponse, JsonObject;

...

procedure TForm1.Button1Click(Sender: TObject);
var
success: Boolean;
http: HCkHttp;
req: HCkHttpRequest;
resp: HCkHttpResponse;
json: HCkJsonObject;
access_token: PWideChar;
expires_in: Integer;
token_type: PWideChar;
scope: PWideChar;

begin
success := False;

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// Sends the following HTTP POST to get a MyInvois OAUth2 access token using client_credentials

// POST /connect/token HTTP/1.1
// Host: preprod-api.myinvois.hasil.gov.my
// Accept: */*
// Content-Length: <<variable>>
// Content-Type: application/x-www-form-urlencoded
// onbehalfof: C25845632020
// 
// client_id={YOUR_CLIENT_ID}&client_secret={YOUR_CLIENT_SECRET}&grant_type=client_credentials&scope=InvoicingAPI

http := CkHttp_Create();

req := CkHttpRequest_Create();

CkHttpRequest_AddHeader(req,'onbehalfof','C25845632020');

CkHttpRequest_AddParam(req,'grant_type','client_credentials');
CkHttpRequest_AddParam(req,'client_id','YOUR_CLIENT_ID');
CkHttpRequest_AddParam(req,'client_secret','YOUR_CLIENT_SECRET');
CkHttpRequest_AddParam(req,'scope','InvoicingAPI');

CkHttpRequest_putHttpVerb(req,'POST');
CkHttpRequest_putContentType(req,'application/x-www-form-urlencoded');

resp := CkHttpResponse_Create();
success := CkHttp_HttpReq(http,'https://preprod-api.myinvois.hasil.gov.my/connect/token',req,resp);
if (success = False) then
  begin
    Memo1.Lines.Add(CkHttp__lastErrorText(http));
    Exit;
  end;

// Note: The returned access token is valid for a short amount of time.  Perhaps 1 hour.
// The access token is used in the "Authorization: Bearer <access_token>" header in subsequent requests until it expires.
// Your application would then need to get a new access token, and so on..

Memo1.Lines.Add('Response Status Code: ' + IntToStr(CkHttpResponse_getStatusCode(resp)));
Memo1.Lines.Add('Response Body:');
Memo1.Lines.Add(CkHttpResponse__bodyStr(resp));

// Here's a sample response:

// {
//   "access_token": "eyJhbGciOiJSUzI1...",
//   "expires_in": 3600,
//   "token_type": "Bearer",
//   "scope": "InvoicingAPI"
// }

json := CkJsonObject_Create();
CkJsonObject_Load(json,CkHttpResponse__bodyStr(resp));
access_token := CkJsonObject__stringOf(json,'access_token');
expires_in := CkJsonObject_IntOf(json,'expires_in');
token_type := CkJsonObject__stringOf(json,'token_type');
scope := CkJsonObject__stringOf(json,'scope');

// To use an access token in a MyInvois API call, see Using a MyInvois Access Token in an API Request

CkHttp_Dispose(http);
CkHttpRequest_Dispose(req);
CkHttpResponse_Dispose(resp);
CkJsonObject_Dispose(json);

end;