(PowerShell) Azure OAuth2 Client Credentials Grant Flow

See more OAuth2 Examples

Note: Your Azure app must be registered as a single-tenant app to use client credentials.

For more information, see https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-client-creds-grant-flow

Chilkat .NET Downloads Chilkat .NET Assemblies

Add-Type -Path "C:\chilkat\ChilkatDotNet47-x64\ChilkatDotNet47.dll"

# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

$http = New-Object Chilkat.Http

$req = New-Object Chilkat.HttpRequest
$req.AddParam("client_secret","CLIENT_SECRET")
$req.AddParam("client_id","CLIENT_ID")

# See Understanding Scopes in Azure OAuth2 Client Credentials Flow
$req.AddParam("scope","https://graph.microsoft.com/.default")

$req.AddParam("grant_type","client_credentials")

# Note: Your Azure app must be registered as a single-tenant app to use client credentials.
# Use your own tenant ID, for example 4d8fdd66-66d1-43b0-ae5c-e31b4b7de5cd
$url = "https://login.microsoftonline.com/TENANT_ID/oauth2/v2.0/token"
$resp = $http.PostUrlEncoded($url,$req)
if ($http.LastMethodSuccess -ne $true) {
    $($http.LastErrorText)
    exit
}

$statusCode = $resp.StatusCode
$("Response status code = " + $statusCode)

$json = New-Object Chilkat.JsonObject
$json.Load($resp.BodyStr)

$json.EmitCompact = $false
$($json.Emit())

# Sample successful output:

# {
#   "token_type": "Bearer",
#   "expires_in": 3599,
#   "ext_expires_in": 3599,
#   "access_token": "eyJ0eX...K0jOERg"
# }

if ($statusCode -eq 200) {
    $json.WriteFile("qa_data/tokens/azureClientCredentialsToken.json")
    $("Success.")
}
else {
    $("Failed.")
}