Sample code for 30+ languages & platforms
PHP ActiveX

Azure AD Service-to-service access token request

See more Azure OAuth2 Examples

Send an Azure AD service-to-service token request to get an access token using a shared secret.

Chilkat PHP ActiveX Downloads

PHP ActiveX
<?php

$success = 0;

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

$http = new COM("Chilkat.Http");

// To see the exact HTTP request sent and the response, set the SessionLogFilename property:
$http->SessionLogFilename = 'qa_output/chilkatHttpLog.txt';

$req = new COM("Chilkat.HttpRequest");

// Set the following request params:
// grant_type 	required 	Specifies the requested grant type. In a Client Credentials Grant flow, the value must be client_credentials.
// 
// client_id 	required 	Specifies the Azure AD client id of the calling web service. 
//     To find the calling application's client ID, in the Azure portal, click Azure Active Directory, click App registrations, click the application. 
//     The client_id is the Application ID
// 
// client_secret 	required 	Enter a key registered for the calling web service or daemon application in Azure AD. 
//     To create a key, in the Azure portal, click Azure Active Directory, click App registrations, click the application, click Settings, click Keys, and add a Key.
//     URL-encode this secret when providing it.
// 
// resource 	required 	Enter the App ID URI of the receiving web service. To find the App ID URI, in the Azure portal, click Azure Active Directory, 
//     click App registrations, click the service application, and then click Settings and Properties.

$req->AddParam('grant_type','client_credentials');
$req->AddParam('client_id','MY_CLIENT_ID');
$req->AddParam('client_secret','MY_CLIENT_SECRET');
$req->AddParam('resource','https://service.contoso.com/');

$req->HttpVerb = 'POST';
$req->ContentType = 'application/x-www-form-urlencoded';

$resp = new COM("Chilkat.HttpResponse");
$success = $http->HttpReq('https://login.microsoftonline.com/<tenant_id>/oauth2/token',$req,$resp);
if ($success == 0) {
    print $http->LastErrorText . "\n";
    exit;
}

$respStatusCode = $resp->StatusCode;
print 'Response Status Code = ' . $respStatusCode . "\n";

$json = new COM("Chilkat.JsonObject");
$json->EmitCompact = 0;
$json->Load($resp->BodyStr);
print 'Response JSON:' . "\n";
print $json->emit() . "\n";

if ($respStatusCode >= 400) {
    print 'Response Header:' . "\n";
    print $resp->Header . "\n";
    print 'Failed.' . "\n";
    exit;
}

// Sample response:

// {
//   "token_type": "Bearer",
//   "expires_in": "3599",
//   "ext_expires_in": "3599",
//   "expires_on": "1570059833",
//   "not_before": "1570055933",
//   "resource": "https://adminchilkatsoft.onmicrosoft.com/eb1b8ced-76b7-4845-aec5-d3e91776e345",
//   "access_token": "eyJ0eXAiO ... pmgw"
// }

// To get the items from the JSON....
$token_type = $json->stringOf('token_type');
$expires_in = $json->stringOf('expires_in');
$ext_expires_in = $json->stringOf('ext_expires_in');
$expires_on = $json->stringOf('expires_on');
$not_before = $json->stringOf('not_before');
$resource = $json->stringOf('resource');
$access_token = $json->stringOf('access_token');

?>