Sample code for 30+ languages & platforms
Go

Azure AD Service-to-service access token request

See more Azure OAuth2 Examples

Send an Azure AD service-to-service token request to get an access token using a shared secret.

Chilkat Go Downloads

Go
    success := false

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    http := chilkat.NewHttp()

    // To see the exact HTTP request sent and the response, set the SessionLogFilename property:
    http.SetSessionLogFilename("qa_output/chilkatHttpLog.txt")

    req := chilkat.NewHttpRequest()

    // Set the following request params:
    // grant_type 	required 	Specifies the requested grant type. In a Client Credentials Grant flow, the value must be client_credentials.
    // 
    // client_id 	required 	Specifies the Azure AD client id of the calling web service. 
    //     To find the calling application's client ID, in the Azure portal, click Azure Active Directory, click App registrations, click the application. 
    //     The client_id is the Application ID
    // 
    // client_secret 	required 	Enter a key registered for the calling web service or daemon application in Azure AD. 
    //     To create a key, in the Azure portal, click Azure Active Directory, click App registrations, click the application, click Settings, click Keys, and add a Key.
    //     URL-encode this secret when providing it.
    // 
    // resource 	required 	Enter the App ID URI of the receiving web service. To find the App ID URI, in the Azure portal, click Azure Active Directory, 
    //     click App registrations, click the service application, and then click Settings and Properties.

    req.AddParam("grant_type","client_credentials")
    req.AddParam("client_id","MY_CLIENT_ID")
    req.AddParam("client_secret","MY_CLIENT_SECRET")
    req.AddParam("resource","https://service.contoso.com/")

    req.SetHttpVerb("POST")
    req.SetContentType("application/x-www-form-urlencoded")

    resp := chilkat.NewHttpResponse()
    success = http.HttpReq("https://login.microsoftonline.com/<tenant_id>/oauth2/token",req,resp)
    if success == false {
        fmt.Println(http.LastErrorText())
        http.DisposeHttp()
        req.DisposeHttpRequest()
        resp.DisposeHttpResponse()
        return
    }

    respStatusCode := resp.StatusCode()
    fmt.Println("Response Status Code = ", respStatusCode)

    json := chilkat.NewJsonObject()
    json.SetEmitCompact(false)
    json.Load(resp.BodyStr())
    fmt.Println("Response JSON:")
    fmt.Println(*json.Emit())

    if respStatusCode >= 400 {
        fmt.Println("Response Header:")
        fmt.Println(resp.Header())
        fmt.Println("Failed.")
        http.DisposeHttp()
        req.DisposeHttpRequest()
        resp.DisposeHttpResponse()
        json.DisposeJsonObject()
        return
    }

    // Sample response:

    // {
    //   "token_type": "Bearer",
    //   "expires_in": "3599",
    //   "ext_expires_in": "3599",
    //   "expires_on": "1570059833",
    //   "not_before": "1570055933",
    //   "resource": "https://adminchilkatsoft.onmicrosoft.com/eb1b8ced-76b7-4845-aec5-d3e91776e345",
    //   "access_token": "eyJ0eXAiO ... pmgw"
    // }

    // To get the items from the JSON....
    token_type := json.StringOf("token_type")
    expires_in := json.StringOf("expires_in")
    ext_expires_in := json.StringOf("ext_expires_in")
    expires_on := json.StringOf("expires_on")
    not_before := json.StringOf("not_before")
    resource := json.StringOf("resource")
    access_token := json.StringOf("access_token")

    http.DisposeHttp()
    req.DisposeHttpRequest()
    resp.DisposeHttpResponse()
    json.DisposeJsonObject()