Sample code for 30+ languages & platforms
Delphi ActiveX

Isabel Connect Create Access Token given Valid Refresh Token

See more Ibanity Examples

Create (refresh) an access token given a valid refresh token.

Chilkat Delphi ActiveX Downloads

Delphi ActiveX
uses
    Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics,
    Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Chilkat_TLB;

...

procedure TForm1.Button1Click(Sender: TObject);
var
success: Integer;
http: TChilkatHttp;
cert: TChilkatCert;
req: TChilkatHttpRequest;
jsonToken: TChilkatJsonObject;
crypt: TChilkatCrypt2;
idempotencyKey: WideString;
resp: TChilkatHttpResponse;
sbResponseBody: TChilkatStringBuilder;
jResp: TChilkatJsonObject;
respStatusCode: Integer;
token_type: WideString;
scope: WideString;
expires_in: Integer;
access_token: WideString;

begin
success := 0;

// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

http := TChilkatHttp.Create(Self);

// Implements the following CURL command:

// curl -X POST https://api.ibanity.com/isabel-connect/oauth2/token \
// --cert certificate.pem:qwertyuiop1 \
// --key private_key.pem  \
// -H "Content-Type: application/x-www-form-urlencoded" \
// -H "Accept: application/vnd.api+json" \
// -H "Ibanity-Idempotency-Key: 94c5586e-e15e-4bae-a1fe-fdbefe1f11d3"  \
// -d grant_type=refresh_token \
// -d refresh_token=valid_refresh_token \
// -d client_id=valid_client_id \
// -d client_secret=valid_client_secret

// Ibanity provides the certificate + private key in PFX format.  This example will use the .pfx instead of the pair of PEM files.
// (It is also possible to implement using Chilkat with the PEM files, but PFX is easier.)
cert := TChilkatCert.Create(Self);
success := cert.LoadPfxFile('qa_data/pfx/my_ibanity_certificate.pfx','my_pfx_password');
if (success = 0) then
  begin
    Memo1.Lines.Add(cert.LastErrorText);
    Exit;
  end;

success := http.SetSslClientCert(cert.ControlInterface);
if (success = 0) then
  begin
    Memo1.Lines.Add(http.LastErrorText);
    Exit;
  end;

req := TChilkatHttpRequest.Create(Self);
req.HttpVerb := 'POST';
req.Path := '/isabel-connect/oauth2/token';
req.ContentType := 'application/x-www-form-urlencoded';
req.AddParam('grant_type','refresh_token');

// Load the previously obtained refresh token.
jsonToken := TChilkatJsonObject.Create(Self);
success := jsonToken.LoadFile('qa_data/tokens/isabel_refresh_token.json');
if (success = 0) then
  begin
    Memo1.Lines.Add('No existing access token.');
    Exit;
  end;
req.AddParam('refresh_token',jsonToken.StringOf('refresh_token'));

// Note: For sandbox testing, we literally want to use the strings
// "valid_client_id", and "valid_client_secret".
// For the live app, you would replace these with actual values.
req.AddParam('client_id','valid_client_id');
req.AddParam('client_secret','valid_client_secret');

req.AddHeader('Accept','application/vnd.api+json');

crypt := TChilkatCrypt2.Create(Self);
idempotencyKey := crypt.GenerateUuid();
Memo1.Lines.Add('Ibanity-Idempotency-Key: ' + idempotencyKey);
req.AddHeader('Ibanity-Idempotency-Key',idempotencyKey);

resp := TChilkatHttpResponse.Create(Self);
success := http.HttpReq('https://api.ibanity.com/isabel-connect/oauth2/token',req.ControlInterface,resp.ControlInterface);
if (success = 0) then
  begin
    Memo1.Lines.Add(http.LastErrorText);
    Exit;
  end;

sbResponseBody := TChilkatStringBuilder.Create(Self);
resp.GetBodySb(sbResponseBody.ControlInterface);
jResp := TChilkatJsonObject.Create(Self);
jResp.LoadSb(sbResponseBody.ControlInterface);
jResp.EmitCompact := 0;

Memo1.Lines.Add('Response Body:');
Memo1.Lines.Add(jResp.Emit());

respStatusCode := resp.StatusCode;
Memo1.Lines.Add('Response Status Code = ' + IntToStr(respStatusCode));
if (respStatusCode >= 400) then
  begin
    Memo1.Lines.Add('Response Header:');
    Memo1.Lines.Add(resp.Header);
    Memo1.Lines.Add('Failed.');
    Exit;
  end;

// Sample JSON response:
// (Sample code for parsing the JSON response is shown below)

// Notice that we don't get a new refresh token.  The original refresh token is used each time we
// want to refresh.  However, we get a new access token.  This access token is to be used in Isabel API calls
// until we need to refresh again.
// {
//   "token_type": "Bearer",
//   "scope": "cloudconnect",
//   "expires_in": 1799,
//   "access_token": "access_token_1603365408"
// }

// Sample code for parsing the JSON response...
// Use the following online tool to generate parsing code from sample JSON:
// Generate Parsing Code from JSON

token_type := jResp.StringOf('token_type');
scope := jResp.StringOf('scope');
expires_in := jResp.IntOf('expires_in');
access_token := jResp.StringOf('access_token');

// Save this to a file so we can load in other examples to include the access token in the HTTP request.
success := jResp.WriteFile('qa_data/tokens/isabel_access_token.json');
end;