Tcl
Tcl
Microsoft Teams OAuth2 Client Credentials Authentication
See more Microsoft Teams Examples
Demonstrates how to authenticate with OAuth 2.0 using the client credentials grant type.Chilkat Tcl Downloads
load ./chilkat.dll
set success 0
# This requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.
set http [new_CkHttp]
# Provide the information needed for Chilkat to automatically fetch the OAuth2.0
# access token as needed.
# This is the new "Integrated OAuth2 Client Credentials" feature introduced in Chilkat v9.5.0.96.
set jsonOAuthCC [new_CkJsonObject]
# --------------------------------------------------------------------------------------------------------
# You'll need to have registered an app in Azure beforehand.
#
# Note: Creating a Team requires the following Application permissions:
# Team.Create, Teamwork.Migrate.All, Group.ReadWrite.All**, Directory.ReadWrite.All**
#
# See How to Create an Azure App Registration for OAuth 2.0 Client Credentials
# --------------------------------------------------------------------------------------------------------
# Use the values from your App Registration in Azure.
CkJsonObject_UpdateString $jsonOAuthCC "client_id" "e1cd2318-xxxx-4916-bfd6-xxxxxxxxxxxx"
CkJsonObject_UpdateString $jsonOAuthCC "client_secret" "K.d8Q~RoJxxxxvCj_u_xxxxxxxxxxxxxxxxxxxxx"
# You'll always use this scope for client credentials, because the allowed actions
# are determined by the App Permissions defined when you registered the app in Azure.
CkJsonObject_UpdateString $jsonOAuthCC "scope" "https://graph.microsoft.com/.default"
# The token endpoint includes your tenant ID. Use your tenant ID (not the tenant ID shown here).
CkJsonObject_UpdateString $jsonOAuthCC "token_endpoint" "https://login.microsoftonline.com/112d7ed6-71bf-4eba-a866-738364321bfc/oauth2/v2.0/token"
# Provide the OAuth2 information. Chilkat will use this information to automatically fetch the OAuth2 access token as needed,
CkHttp_put_AuthToken $http [CkJsonObject_emit $jsonOAuthCC]
# ------------------------------------------------------------------------------
# To create a Microsoft Team, we want to send an HTTP request like the following:
#
# Note: The following is the minimal JSON for a request using Applicaton permissions (i.e. the access token retrieved using the client credentials grant).
#
# POST https://graph.microsoft.com/v1.0/teams
# Content-Type: application/json
#
# {
# "template@odata.bind":"https://graph.microsoft.com/v1.0/teamsTemplates('standard')",
# "displayName":"My Sample Team",
# "description":"My Sample Team�s Description",
# "members":[
# {
# "@odata.type":"#microsoft.graph.aadUserConversationMember",
# "roles":[
# "owner"
# ],
# "user@odata.bind":"https://graph.microsoft.com/v1.0/users('0040b377-61d8-43db-94f5-81374122dc7e')"
# }
# ]
# }
set json [new_CkJsonObject]
CkJsonObject_UpdateString $json "\"template@odata.bind\"" "https://graph.microsoft.com/v1.0/teamsTemplates('standard')"
CkJsonObject_UpdateString $json "displayName" "My Sample Team"
CkJsonObject_UpdateString $json "description" "My Sample Team�s Description"
CkJsonObject_UpdateString $json "members[0].\"@odata.type\"" "#microsoft.graph.aadUserConversationMember"
CkJsonObject_UpdateString $json "members[0].roles[0]" "owner"
CkJsonObject_UpdateString $json "members[0].\"user@odata.bind\"" "https://graph.microsoft.com/v1.0/users('4ee732c3-322e-4a6b-b729-2fd1eb5c6004')"
CkJsonObject_put_EmitCompact $json 0
puts [CkJsonObject_emit $json]
CkHttp_SetRequestHeader $http "Content-type" "application/json"
set resp [new_CkHttpResponse]
set success [CkHttp_HttpJson $http "POST" "https://graph.microsoft.com/v1.0/teams" $json "application/json" $resp]
if {$success == 0} then {
puts [CkHttp_lastErrorText $http]
delete_CkHttp $http
delete_CkJsonObject $jsonOAuthCC
delete_CkJsonObject $json
delete_CkHttpResponse $resp
exit
}
# A successful response is indicated by a 202 response status code and an empty response body.
puts "Response Status Code: [CkHttpResponse_get_StatusCode $resp]"
puts "Response Body:"
puts [CkHttpResponse_bodyStr $resp]
if {[CkHttpResponse_get_StatusCode $resp] >= 400} then {
puts "Response Header:"
puts [CkHttpResponse_header $resp]
puts "Failed."
}
delete_CkHttp $http
delete_CkJsonObject $jsonOAuthCC
delete_CkJsonObject $json
delete_CkHttpResponse $resp