Sample code for 30+ languages & platforms
DataFlex

Auth0 Server-to-Server Access Token (Client Credentials flow)

See more HTTP Examples

Demonstrates how to obtain an Auth0 access token using client credentials (client_id and client_secret).

This is just a matter of duplicating this CURL command:

curl --request POST
  --url 'https://chilkat.auth0.com/oauth/token' \
  --header 'content-type: application/json' \
  --data '{"grant_type":"client_credentials","client_id": "xxxx","client_secret": "xxxx","audience": "https://api.example.com/geocoding/v1/"}'

Chilkat DataFlex Downloads

DataFlex
Use ChilkatAx-win32.pkg

Procedure Test
    Boolean iSuccess
    Variant vJson
    Handle hoJson
    Handle hoHttp
    Variant vResp
    Handle hoResp
    Handle hoJsonResp
    String sTemp1
    Integer iTemp1

    Move False To iSuccess

    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // We want to duplicate this curl command:
    // 
    // curl --request POST
    //   --url 'https://chilkat.auth0.com/oauth/token' \
    //   --header 'content-type: application/json' \
    //   --data '{"grant_type":"client_credentials","client_id": "my_client_id","client_secret": "my_client_secret","audience": "https://api.example.com/geocoding/v1/"}'

    // Build the JSON body of the request.
    Get Create (RefClass(cComChilkatJsonObject)) To hoJson
    If (Not(IsComObjectCreated(hoJson))) Begin
        Send CreateComObject of hoJson
    End
    Get ComUpdateString Of hoJson "grant_type" "client_credentials" To iSuccess
    Get ComUpdateString Of hoJson "client_id" "AUTH0-CLIENT-ID" To iSuccess
    Get ComUpdateString Of hoJson "client_secret" "AUTH0-CLIENT-SECRET" To iSuccess
    Get ComUpdateString Of hoJson "audience" "https://api.example.com/geocoding/v1/" To iSuccess

    // IMPORTANT: You would use your own url.  You would not use "chilkat.auth0.com".  
    // Instead you would use "your_name.auth0.com"
    Get Create (RefClass(cComChilkatHttp)) To hoHttp
    If (Not(IsComObjectCreated(hoHttp))) Begin
        Send CreateComObject of hoHttp
    End
    Get Create (RefClass(cComChilkatHttpResponse)) To hoResp
    If (Not(IsComObjectCreated(hoResp))) Begin
        Send CreateComObject of hoResp
    End
    Get pvComObject of hoJson to vJson
    Get pvComObject of hoResp to vResp
    Get ComHttpJson Of hoHttp "POST" "https://chilkat.auth0.com/oauth/token" vJson "application/json" vResp To iSuccess
    If (iSuccess = False) Begin
        Get ComLastErrorText Of hoHttp To sTemp1
        Showln sTemp1
        Procedure_Return
    End

    // A 200 response status code indicates success.  In the success case, the response body
    // contains the JSON access token, such as: 
    // {
    //   "access_token": "eyJz93a...k4laUWw",
    //   "token_type":"Bearer",
    //   "expires_in":86400
    // }
    // 

    Get ComStatusCode Of hoResp To iTemp1
    Showln "response status code = " iTemp1

    // The repsonse is JSON if successful and also JSON for errors.
    Get Create (RefClass(cComChilkatJsonObject)) To hoJsonResp
    If (Not(IsComObjectCreated(hoJsonResp))) Begin
        Send CreateComObject of hoJsonResp
    End
    Set ComEmitCompact Of hoJsonResp To False
    Get ComBodyStr Of hoResp To sTemp1
    Get ComLoad Of hoJsonResp sTemp1 To iSuccess

    Get ComStatusCode Of hoResp To iTemp1
    If (iTemp1 <> 200) Begin
        // The response body contains error information in JSON format.
        Get ComEmit Of hoJsonResp To sTemp1
        Showln sTemp1

        // An example of an error response:
        // 		{
        // 		  "error": "access_denied",
        // 		  "error_description": "Client is not authorized to access \"https://api.example.com/geocoding/v1/\". You might probably want to create a \"client-grant\" associated to this API. See: https://auth0.com/docs/api/v2#!/Client_Grants/post_client_grants"
        // 		}
        Procedure_Return
    End

    Showln "Success!"
    Get ComEmit Of hoJsonResp To sTemp1
    Showln sTemp1

    // A successful JSON response body looks like this:

    // {
    //   "access_token": "eyJz93a...k4laUWw",
    //   "token_type":"Bearer",
    //   "expires_in":86400
    // }


End_Procedure