Sample code for 30+ languages & platforms
Pascal (Lazarus/Delphi)

Azure AD Service-to-service access token request

See more Azure OAuth2 Examples

Send an Azure AD service-to-service token request to get an access token using a shared secret.

Chilkat Pascal (Lazarus/Delphi) Downloads

Pascal (Lazarus/Delphi)
program ChilkatDemo;

// Demonstrates using the Chilkat Pascal wrapper via the C bridge DLL.
// Builds as a console application under Lazarus (FPC) or Delphi.

{$IFDEF FPC}
  {$MODE DELPHI}
{$ENDIF}
{$APPTYPE CONSOLE}

uses
  {$IFDEF UNIX}
  cthreads,
  {$ENDIF}
  SysUtils,
  CkDllLoader,
  Chilkat.Http,
  Chilkat.HttpRequest,
  Chilkat.HttpResponse,
  Chilkat.JsonObject;

// ---------------------------------------------------------------------------

procedure RunDemo;
var
  success: Boolean;
  http: THttp;
  req: THttpRequest;
  resp: THttpResponse;
  respStatusCode: Integer;
  json: TJsonObject;
  token_type: string;
  expires_in: string;
  ext_expires_in: string;
  expires_on: string;
  not_before: string;
  resource: string;
  access_token: string;

begin
  success := False;

  //  This example requires the Chilkat API to have been previously unlocked.
  //  See Global Unlock Sample for sample code.

  http := THttp.Create;

  //  To see the exact HTTP request sent and the response, set the SessionLogFilename property:
  http.SessionLogFilename := 'qa_output/chilkatHttpLog.txt';

  req := THttpRequest.Create;

  //  Set the following request params:
  //  grant_type 	required 	Specifies the requested grant type. In a Client Credentials Grant flow, the value must be client_credentials.
  //  
  //  client_id 	required 	Specifies the Azure AD client id of the calling web service. 
  //      To find the calling application's client ID, in the Azure portal, click Azure Active Directory, click App registrations, click the application. 
  //      The client_id is the Application ID
  //  
  //  client_secret 	required 	Enter a key registered for the calling web service or daemon application in Azure AD. 
  //      To create a key, in the Azure portal, click Azure Active Directory, click App registrations, click the application, click Settings, click Keys, and add a Key.
  //      URL-encode this secret when providing it.
  //  
  //  resource 	required 	Enter the App ID URI of the receiving web service. To find the App ID URI, in the Azure portal, click Azure Active Directory, 
  //      click App registrations, click the service application, and then click Settings and Properties.

  req.AddParam('grant_type','client_credentials');
  req.AddParam('client_id','MY_CLIENT_ID');
  req.AddParam('client_secret','MY_CLIENT_SECRET');
  req.AddParam('resource','https://service.contoso.com/');

  req.HttpVerb := 'POST';
  req.ContentType := 'application/x-www-form-urlencoded';

  resp := THttpResponse.Create;
  success := http.HttpReq('https://login.microsoftonline.com/<tenant_id>/oauth2/token',req,resp);
  if (success = False) then
    begin
      WriteLn(http.LastErrorText);
      Exit;
    end;

  respStatusCode := resp.StatusCode;
  WriteLn('Response Status Code = ' + respStatusCode);

  json := TJsonObject.Create;
  json.EmitCompact := False;
  json.Load(resp.BodyStr);
  WriteLn('Response JSON:');
  WriteLn(json.Emit());

  if (respStatusCode >= 400) then
    begin
      WriteLn('Response Header:');
      WriteLn(resp.Header);
      WriteLn('Failed.');
      Exit;
    end;

  //  Sample response:

  //  {
  //    "token_type": "Bearer",
  //    "expires_in": "3599",
  //    "ext_expires_in": "3599",
  //    "expires_on": "1570059833",
  //    "not_before": "1570055933",
  //    "resource": "https://adminchilkatsoft.onmicrosoft.com/eb1b8ced-76b7-4845-aec5-d3e91776e345",
  //    "access_token": "eyJ0eXAiO ... pmgw"
  //  }

  //  To get the items from the JSON....
  token_type := json.StringOf('token_type');
  expires_in := json.StringOf('expires_in');
  ext_expires_in := json.StringOf('ext_expires_in');
  expires_on := json.StringOf('expires_on');
  not_before := json.StringOf('not_before');
  resource := json.StringOf('resource');
  access_token := json.StringOf('access_token');


  http.Free;
  req.Free;
  resp.Free;
  json.Free;

end;

// ---------------------------------------------------------------------------

begin

  try
    RunDemo;
  except
    on E: Exception do
      WriteLn('Unhandled exception: ', E.ClassName, ': ', E.Message);
  end;

  WriteLn;
  {$IFDEF MSWINDOWS}
  WriteLn('Press Enter to exit...');
  ReadLn;
  {$ENDIF}
end.