|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(SQL Server) Microsoft Teams OAuth2 Access TokenGets an access token on behalf of a user. This is example code for desktop applications for getting an OAuth2 access token. You'll need to make a minor edit to the code as described in the comments to launch a browser to browse to a URL. The account owner will interactively grant or deny access, and after doing so, the example code continues to exchange the grant code for an access token. Once the initial access token is obtained, it can be repeatedly refreshed without user interaction. For more information, see https://docs.microsoft.com/en-us/graph/auth/auth-concepts
-- Important: See this note about string length limitations for strings returned by sp_OAMethod calls. -- CREATE PROCEDURE ChilkatSample AS BEGIN DECLARE @hr int DECLARE @iTmp0 int -- Important: Do not use nvarchar(max). See the warning about using nvarchar(max). DECLARE @sTmp0 nvarchar(4000) -- This example requires the Chilkat API to have been previously unlocked. -- See Global Unlock Sample for sample code. DECLARE @oauth2 int -- Use "Chilkat_9_5_0.OAuth2" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.OAuth2', @oauth2 OUT IF @hr <> 0 BEGIN PRINT 'Failed to create ActiveX component' RETURN END DECLARE @success int -- This should be the port in the localhost callback URL for your app. -- The callback URL would look like "http://localhost:3017/" if the port number is 3017. EXEC sp_OASetProperty @oauth2, 'ListenPort', 3017 EXEC sp_OASetProperty @oauth2, 'AuthorizationEndpoint', 'https://login.microsoftonline.com/common/oauth2/v2.0/authorize' EXEC sp_OASetProperty @oauth2, 'TokenEndpoint', 'https://login.microsoftonline.com/common/oauth2/v2.0/token' -- Replace these with actual values. EXEC sp_OASetProperty @oauth2, 'ClientId', 'MICROSOFT-GRAPH-CLIENT-ID' -- This is your app password: EXEC sp_OASetProperty @oauth2, 'ClientSecret', 'MICROSOFT-GRAPH-CLIENT-SECRET' EXEC sp_OASetProperty @oauth2, 'CodeChallenge', 0 -- Provide a SPACE separated list of scopes. -- See https://docs.microsoft.com/en-us/graph/permissions-reference#teams-permissions -- Important: To get a refresh token in the final response, you must include the "offline_access" scope -- For testing purposes, this example requests more scopes than are likely need. EXEC sp_OASetProperty @oauth2, 'Scope', 'openid profile offline_access user.readwrite team.create directory.readwrite.all Group.ReadWrite.All TeamMember.ReadWrite.All OnlineMeetings.ReadWrite.All' -- Begin the OAuth2 three-legged flow. This returns a URL that should be loaded in a browser. DECLARE @url nvarchar(4000) EXEC sp_OAMethod @oauth2, 'StartAuth', @url OUT EXEC sp_OAGetProperty @oauth2, 'LastMethodSuccess', @iTmp0 OUT IF @iTmp0 <> 1 BEGIN EXEC sp_OAGetProperty @oauth2, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @oauth2 RETURN END -- At this point, your application should load the URL in a browser. -- For example, -- in C#: System.Diagnostics.Process.Start(url); -- in Java: Desktop.getDesktop().browse(new URI(url)); -- in VBScript: Set wsh=WScript.CreateObject("WScript.Shell") -- wsh.Run url -- in Xojo: ShowURL(url) (see http://docs.xojo.com/index.php/ShowURL) -- in Dataflex: Runprogram Background "c:\Program Files\Internet Explorer\iexplore.exe" sUrl -- The Microsoft account owner would interactively accept or deny the authorization request. -- Add the code to load the url in a web browser here... -- Add the code to load the url in a web browser here... -- Add the code to load the url in a web browser here... -- Now wait for the authorization. -- We'll wait for a max of 60 seconds. DECLARE @numMsWaited int SELECT @numMsWaited = 0 EXEC sp_OAGetProperty @oauth2, 'AuthFlowState', @iTmp0 OUT WHILE (@numMsWaited < 60000) and (@iTmp0 < 3) BEGIN EXEC sp_OAMethod @oauth2, 'SleepMs', NULL, 100 SELECT @numMsWaited = @numMsWaited + 100 END -- If there was no response from the browser within 30 seconds, then -- the AuthFlowState will be equal to 1 or 2. -- 1: Waiting for Redirect. The OAuth2 background thread is waiting to receive the redirect HTTP request from the browser. -- 2: Waiting for Final Response. The OAuth2 background thread is waiting for the final access token response. -- In that case, cancel the background task started in the call to StartAuth. EXEC sp_OAGetProperty @oauth2, 'AuthFlowState', @iTmp0 OUT IF @iTmp0 < 3 BEGIN EXEC sp_OAMethod @oauth2, 'Cancel', @success OUT PRINT 'No response from the browser!' EXEC @hr = sp_OADestroy @oauth2 RETURN END -- Check the AuthFlowState to see if authorization was granted, denied, or if some error occurred -- The possible AuthFlowState values are: -- 3: Completed with Success. The OAuth2 flow has completed, the background thread exited, and the successful JSON response is available in AccessTokenResponse property. -- 4: Completed with Access Denied. The OAuth2 flow has completed, the background thread exited, and the error JSON is available in AccessTokenResponse property. -- 5: Failed Prior to Completion. The OAuth2 flow failed to complete, the background thread exited, and the error information is available in the FailureInfo property. EXEC sp_OAGetProperty @oauth2, 'AuthFlowState', @iTmp0 OUT IF @iTmp0 = 5 BEGIN PRINT 'OAuth2 failed to complete.' EXEC sp_OAGetProperty @oauth2, 'FailureInfo', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @oauth2 RETURN END EXEC sp_OAGetProperty @oauth2, 'AuthFlowState', @iTmp0 OUT IF @iTmp0 = 4 BEGIN PRINT 'OAuth2 authorization was denied.' EXEC sp_OAGetProperty @oauth2, 'AccessTokenResponse', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @oauth2 RETURN END EXEC sp_OAGetProperty @oauth2, 'AuthFlowState', @iTmp0 OUT IF @iTmp0 <> 3 BEGIN EXEC sp_OAGetProperty @oauth2, 'AuthFlowState', @iTmp0 OUT PRINT 'Unexpected AuthFlowState:' + @iTmp0 EXEC @hr = sp_OADestroy @oauth2 RETURN END PRINT 'OAuth2 authorization granted!' EXEC sp_OAGetProperty @oauth2, 'AccessToken', @sTmp0 OUT PRINT 'Access Token = ' + @sTmp0 -- Get the full JSON response: DECLARE @json int -- Use "Chilkat_9_5_0.JsonObject" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.JsonObject', @json OUT EXEC sp_OAGetProperty @oauth2, 'AccessTokenResponse', @sTmp0 OUT EXEC sp_OAMethod @json, 'Load', @success OUT, @sTmp0 EXEC sp_OASetProperty @json, 'EmitCompact', 0 -- The JSON response looks like this: -- { -- "token_type": "Bearer", -- "scope": "openid profile User.ReadWrite Notes.ReadWrite Notes.Create User.Read Mail.Send Mail.ReadWrite Files.ReadWrite Calendars.ReadWrite Group.ReadWrite.All", -- "expires_in": 3600, -- "ext_expires_in": 3600, -- "access_token": "...", -- "refresh_token": "...", -- "id_token": "..." -- } EXEC sp_OAMethod @json, 'Emit', @sTmp0 OUT PRINT @sTmp0 -- Save the JSON to a file for future requests. DECLARE @fac int -- Use "Chilkat_9_5_0.FileAccess" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.FileAccess', @fac OUT EXEC sp_OAMethod @json, 'Emit', @sTmp0 OUT EXEC sp_OAMethod @fac, 'WriteEntireTextFile', @success OUT, 'qa_data/tokens/microsoft_teams.json', @sTmp0, 'utf-8', 0 EXEC @hr = sp_OADestroy @oauth2 EXEC @hr = sp_OADestroy @json EXEC @hr = sp_OADestroy @fac END GO |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.