Sample code for 30+ languages & platforms
Classic ASP

Refresh HMRC OAuth2 Access Token

See more OAuth2 Examples

Demonstrates how to refresh an HMRC access token.

Chilkat Classic ASP Downloads

Classic ASP
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
success = 0

' This example requires the Chilkat API to have been previously unlocked.
' See Global Unlock Sample for sample code.

' See Get HMRC Access Token 
' for sample code showing how to obtain a HMRC access token for desktop apps.

' It is assumed we previously obtained an OAuth2 access token for HMRC.

set jsonToken = Server.CreateObject("Chilkat.JsonObject")
success = jsonToken.LoadFile("qa_data/tokens/hmrc.json")
If (success <> 1) Then
    Response.Write "<pre>" & Server.HTMLEncode( "Failed to load hmrc.json") & "</pre>"
    Response.End
End If

' The access token JSON looks something like this:

' {
'   "token_type": "Bearer",
'   "scope": "user_impersonation",
'   "expires_in": "3599",
'   "ext_expires_in": "0",
'   "expires_on": "1524783438",
'   "not_before": "1524779538",
'   "resource": "https://mydomain.api.crm.dynamics.com",
'   "access_token": "...",
'   "refresh_token": "...",
'   "id_token": "..."
' }

set oauth2 = Server.CreateObject("Chilkat.OAuth2")

oauth2.TokenEndpoint = "https://test-api.service.hmrc.gov.uk/oauth/token"

' Replace these with actual values.
oauth2.ClientId = "HMRC-CLIENT-ID"
oauth2.ClientSecret = "HMRC-CLIENT-SECRET"

' Get the "refresh_token"
oauth2.RefreshToken = jsonToken.StringOf("refresh_token")

' Send the HTTP POST to refresh the access token..
success = oauth2.RefreshAccessToken()
If (success <> 1) Then
    Response.Write "<pre>" & Server.HTMLEncode( oauth2.LastErrorText) & "</pre>"
    Response.End
End If

' Load the access token response into the json object 
success = jsonToken.Load(oauth2.AccessTokenResponse)

' If an "expires_on" member does not exist, then add the JSON member by
' getting the current system date/time and adding the "expires_in" seconds.
' This way we'll know when the token expires.
If (jsonToken.HasMember("expires_on") = 0) Then
    set dtExpire = Server.CreateObject("Chilkat.CkDateTime")
    success = dtExpire.SetFromCurrentSystemTime()
    success = dtExpire.AddSeconds(jsonToken.IntOf("expires_in"))
    success = jsonToken.AppendString("expires_on",dtExpire.GetAsUnixTimeStr(0))
End If

' Save the new JSON access token response to a file.
' The access + refresh tokens contained in this JSON will be needed for the next refresh.
set sbJson = Server.CreateObject("Chilkat.StringBuilder")
jsonToken.EmitCompact = 0
success = jsonToken.EmitSb(sbJson)
success = sbJson.WriteFile("qa_data/tokens/hmrc.json","utf-8",0)

Response.Write "<pre>" & Server.HTMLEncode( "OAuth2 authorization granted!") & "</pre>"
Response.Write "<pre>" & Server.HTMLEncode( "New Access Token = " & oauth2.AccessToken) & "</pre>"

%>
</body>
</html>