Sample code for 30+ languages & platforms
Delphi ActiveX

Rabobank Refresh OAuth2 Access Token

See more OAuth2 Examples

Demonstrates how to refresh an expired Rabobank OAuth2 access token. (No interactive user interaction is required to refresh an access token.)

Chilkat Delphi ActiveX Downloads

Delphi ActiveX
uses
    Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics,
    Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Chilkat_TLB;

...

procedure TForm1.Button1Click(Sender: TObject);
var
success: Integer;
json: TChilkatJsonObject;
req: TChilkatHttpRequest;
http: TChilkatHttp;
resp: TChilkatHttpResponse;
fac: TCkFileAccess;

begin
success := 0;

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// We previously obtained an access token and saved the JSON to a file using this example:
// Get Rabobank OAuth2 Access Token

json := TChilkatJsonObject.Create(Self);
success := json.LoadFile('qa_data/tokens/rabobank.json');
if (success <> 1) then
  begin
    Exit;
  end;

// {
//   "token_type": "Bearer",
//   "access_token": "AAIkYTU0ZWM ... sxE0KL0HHWw",
//   "expires_in": 3600,
//   "consented_on": 1584641121,
//   "scope": "ais.balances.read ais.transactions.read-90days ais.transactions.read-history",
//   "refresh_token": "AAJXXSdN ... Uiblz9ILkxNBlytRGA",
//   "refresh_token_expires_in": 157784760,
//   "expires_on": "1584644722"
// }

// Refresh the access token by sending a POST like this:
// 

// POST /oauth2/token
// Headers:
//     Content-Type: application/x-www-form-urlencoded
//     Authorization: Basic BASE64(CLIENT_ID + ":" + CLIENT_SECRET)
// 
// Body (x-www-form-urlencoded):
//     grant_type: refresh_token
//     refresh_token: REFRESH_TOKEN

req := TChilkatHttpRequest.Create(Self);
req.AddParam('grant_type','refresh_token');
req.AddParam('refresh_token',json.StringOf('refresh_token'));

http := TChilkatHttp.Create(Self);

// Causes the "Authorization: Basic BASE64(CLIENT_ID + ":" + CLIENT_SECRET)" header to be added..
http.BasicAuth := 1;
http.Login := 'YOUR_APP_CLIENT_ID';
http.Password := 'YOUR_APP_CLIENT_SECRET';

req.HttpVerb := 'POST';
req.ContentType := 'application/x-www-form-urlencoded';

resp := TChilkatHttpResponse.Create(Self);
success := http.HttpReq('https://api-sandbox.rabobank.nl/openapi/sandbox/oauth2/token',req.ControlInterface,resp.ControlInterface);
if (success = 0) then
  begin
    Memo1.Lines.Add(http.LastErrorText);
    Exit;
  end;

// Load the JSON response.
json.Load(resp.BodyStr);
json.EmitCompact := 0;

// Show the JSON response.
Memo1.Lines.Add(json.Emit());

Memo1.Lines.Add('Response status code: ' + IntToStr(resp.StatusCode));

// If the response status code is not 200, then it's an error.
if (resp.StatusCode <> 200) then
  begin
    Exit;
  end;

// Save the refreshed access token JSON to a file for future requests.
fac := TCkFileAccess.Create(Self);
fac.WriteEntireTextFile('qa_data/tokens/rabobank.json',json.Emit(),'utf-8',0);
end;