Sample code for 30+ languages & platforms
C

Azure AD Service-to-service access token request

See more Azure OAuth2 Examples

Send an Azure AD service-to-service token request to get an access token using a shared secret.

Chilkat C Downloads

C
#include <C_CkHttp.h>
#include <C_CkHttpRequest.h>
#include <C_CkHttpResponse.h>
#include <C_CkJsonObject.h>

void ChilkatSample(void)
    {
    BOOL success;
    HCkHttp http;
    HCkHttpRequest req;
    HCkHttpResponse resp;
    int respStatusCode;
    HCkJsonObject json;
    const char *token_type;
    const char *expires_in;
    const char *ext_expires_in;
    const char *expires_on;
    const char *not_before;
    const char *resource;
    const char *access_token;

    success = FALSE;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    http = CkHttp_Create();

    // To see the exact HTTP request sent and the response, set the SessionLogFilename property:
    CkHttp_putSessionLogFilename(http,"qa_output/chilkatHttpLog.txt");

    req = CkHttpRequest_Create();

    // Set the following request params:
    // grant_type 	required 	Specifies the requested grant type. In a Client Credentials Grant flow, the value must be client_credentials.
    // 
    // client_id 	required 	Specifies the Azure AD client id of the calling web service. 
    //     To find the calling application's client ID, in the Azure portal, click Azure Active Directory, click App registrations, click the application. 
    //     The client_id is the Application ID
    // 
    // client_secret 	required 	Enter a key registered for the calling web service or daemon application in Azure AD. 
    //     To create a key, in the Azure portal, click Azure Active Directory, click App registrations, click the application, click Settings, click Keys, and add a Key.
    //     URL-encode this secret when providing it.
    // 
    // resource 	required 	Enter the App ID URI of the receiving web service. To find the App ID URI, in the Azure portal, click Azure Active Directory, 
    //     click App registrations, click the service application, and then click Settings and Properties.

    CkHttpRequest_AddParam(req,"grant_type","client_credentials");
    CkHttpRequest_AddParam(req,"client_id","MY_CLIENT_ID");
    CkHttpRequest_AddParam(req,"client_secret","MY_CLIENT_SECRET");
    CkHttpRequest_AddParam(req,"resource","https://service.contoso.com/");

    CkHttpRequest_putHttpVerb(req,"POST");
    CkHttpRequest_putContentType(req,"application/x-www-form-urlencoded");

    resp = CkHttpResponse_Create();
    success = CkHttp_HttpReq(http,"https://login.microsoftonline.com/<tenant_id>/oauth2/token",req,resp);
    if (success == FALSE) {
        printf("%s\n",CkHttp_lastErrorText(http));
        CkHttp_Dispose(http);
        CkHttpRequest_Dispose(req);
        CkHttpResponse_Dispose(resp);
        return;
    }

    respStatusCode = CkHttpResponse_getStatusCode(resp);
    printf("Response Status Code = %d\n",respStatusCode);

    json = CkJsonObject_Create();
    CkJsonObject_putEmitCompact(json,FALSE);
    CkJsonObject_Load(json,CkHttpResponse_bodyStr(resp));
    printf("Response JSON:\n");
    printf("%s\n",CkJsonObject_emit(json));

    if (respStatusCode >= 400) {
        printf("Response Header:\n");
        printf("%s\n",CkHttpResponse_header(resp));
        printf("Failed.\n");
        CkHttp_Dispose(http);
        CkHttpRequest_Dispose(req);
        CkHttpResponse_Dispose(resp);
        CkJsonObject_Dispose(json);
        return;
    }

    // Sample response:

    // {
    //   "token_type": "Bearer",
    //   "expires_in": "3599",
    //   "ext_expires_in": "3599",
    //   "expires_on": "1570059833",
    //   "not_before": "1570055933",
    //   "resource": "https://adminchilkatsoft.onmicrosoft.com/eb1b8ced-76b7-4845-aec5-d3e91776e345",
    //   "access_token": "eyJ0eXAiO ... pmgw"
    // }

    // To get the items from the JSON....
    token_type = CkJsonObject_stringOf(json,"token_type");
    expires_in = CkJsonObject_stringOf(json,"expires_in");
    ext_expires_in = CkJsonObject_stringOf(json,"ext_expires_in");
    expires_on = CkJsonObject_stringOf(json,"expires_on");
    not_before = CkJsonObject_stringOf(json,"not_before");
    resource = CkJsonObject_stringOf(json,"resource");
    access_token = CkJsonObject_stringOf(json,"access_token");


    CkHttp_Dispose(http);
    CkHttpRequest_Dispose(req);
    CkHttpResponse_Dispose(resp);
    CkJsonObject_Dispose(json);

    }