Sample code for 30+ languages & platforms
Pascal (Lazarus/Delphi)

Azure Fetch OpenID Connect metadata document

See more OIDC Examples

Downloads the OpenID Connect self-discovery document for an Azure OIDC enabled app.

Chilkat Pascal (Lazarus/Delphi) Downloads

Pascal (Lazarus/Delphi)
program ChilkatDemo;

// Demonstrates using the Chilkat Pascal wrapper via the C bridge DLL.
// Builds as a console application under Lazarus (FPC) or Delphi.

{$IFDEF FPC}
  {$MODE DELPHI}
{$ENDIF}
{$APPTYPE CONSOLE}

uses
  {$IFDEF UNIX}
  cthreads,
  {$ENDIF}
  SysUtils,
  CkDllLoader,
  Chilkat.Http,
  Chilkat.HttpResponse,
  Chilkat.JsonObject;

// ---------------------------------------------------------------------------

procedure RunDemo;
var
  success: Boolean;
  http: THttp;
  resp: THttpResponse;
  json: TJsonObject;
  strVal: string;
  token_endpoint: string;
  jwks_uri: string;
  issuer: string;
  request_uri_parameter_supported: Boolean;
  userinfo_endpoint: string;
  authorization_endpoint: string;
  device_authorization_endpoint: string;
  http_logout_supported: Boolean;
  frontchannel_logout_supported: Boolean;
  end_session_endpoint: string;
  kerberos_endpoint: string;
  tenant_region_scope: string;
  cloud_instance_name: string;
  cloud_graph_host_name: string;
  msgraph_host: string;
  rbac_url: string;
  i: Integer;
  count_i: Integer;

begin
  success := False;

  //  This example requires the Chilkat API to have been previously unlocked.
  //  See Global Unlock Sample for sample code.

  http := THttp.Create;

  http.Accept := 'application/json';

  //  See the Microsoft Azure OIDC documentation at https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-protocols-oidc
  //  The "tenant" can take one of four values described in the documentation at the link above.

  success := http.SetUrlVar('tenant','6d8ddd66-68d1-44b0-af5c-e31b4b7ee5cd');
  resp := THttpResponse.Create;
  success := http.HttpNoBody('GET','https://login.microsoftonline.com/{$tenant}/v2.0/.well-known/openid-configuration',resp);
  if (success = False) then
    begin
      WriteLn(http.LastErrorText);
      Exit;
    end;

  WriteLn('Response Status Code: ' + resp.StatusCode);

  json := TJsonObject.Create;
  json.Load(resp.BodyStr);
  json.EmitCompact := False;
  WriteLn(json.Emit());

  if (resp.StatusCode <> 200) then
    begin
      WriteLn('Failed.');
      Exit;
    end;

  //  Sample output...
  //  (See the parsing code below..)
  //  
  //  Use the this online tool to generate parsing code from sample JSON: 
  //  Generate Parsing Code from JSON

  //  {
  //    "token_endpoint": "https://login.microsoftonline.com/6d8ddd66-68d1-44b0-af5c-e31b4b7ee5cd/oauth2/v2.0/token",
  //    "token_endpoint_auth_methods_supported": [
  //      "client_secret_post",
  //      "private_key_jwt",
  //      "client_secret_basic"
  //    ],
  //    "jwks_uri": "https://login.microsoftonline.com/6d8ddd66-68d1-44b0-af5c-e31b4b7ee5cd/discovery/v2.0/keys",
  //    "response_modes_supported": [
  //      "query",
  //      "fragment",
  //      "form_post"
  //    ],
  //    "subject_types_supported": [
  //      "pairwise"
  //    ],
  //    "id_token_signing_alg_values_supported": [
  //      "RS256"
  //    ],
  //    "response_types_supported": [
  //      "code",
  //      "id_token",
  //      "code id_token",
  //      "id_token token"
  //    ],
  //    "scopes_supported": [
  //      "openid",
  //      "profile",
  //      "email",
  //      "offline_access"
  //    ],
  //    "issuer": "https://login.microsoftonline.com/6d8ddd66-68d1-44b0-af5c-e31b4b7ee5cd/v2.0",
  //    "request_uri_parameter_supported": false,
  //    "userinfo_endpoint": "https://graph.microsoft.com/oidc/userinfo",
  //    "authorization_endpoint": "https://login.microsoftonline.com/6d8ddd66-68d1-44b0-af5c-e31b4b7ee5cd/oauth2/v2.0/authorize",
  //    "device_authorization_endpoint": "https://login.microsoftonline.com/6d8ddd66-68d1-44b0-af5c-e31b4b7ee5cd/oauth2/v2.0/devicecode",
  //    "http_logout_supported": true,
  //    "frontchannel_logout_supported": true,
  //    "end_session_endpoint": "https://login.microsoftonline.com/6d8ddd66-68d1-44b0-af5c-e31b4b7ee5cd/oauth2/v2.0/logout",
  //    "claims_supported": [
  //      "sub",
  //      "iss",
  //      "cloud_instance_name",
  //      "cloud_instance_host_name",
  //      "cloud_graph_host_name",
  //      "msgraph_host",
  //      "aud",
  //      "exp",
  //      "iat",
  //      "auth_time",
  //      "acr",
  //      "nonce",
  //      "preferred_username",
  //      "name",
  //      "tid",
  //      "ver",
  //      "at_hash",
  //      "c_hash",
  //      "email"
  //    ],
  //    "kerberos_endpoint": "https://login.microsoftonline.com/6d8ddd66-68d1-44b0-af5c-e31b4b7ee5cd/kerberos",
  //    "tenant_region_scope": "NA",
  //    "cloud_instance_name": "microsoftonline.com",
  //    "cloud_graph_host_name": "graph.windows.net",
  //    "msgraph_host": "graph.microsoft.com",
  //    "rbac_url": "https://pas.windows.net"
  //  }

  token_endpoint := json.StringOf('token_endpoint');
  jwks_uri := json.StringOf('jwks_uri');
  issuer := json.StringOf('issuer');
  request_uri_parameter_supported := json.BoolOf('request_uri_parameter_supported');
  userinfo_endpoint := json.StringOf('userinfo_endpoint');
  authorization_endpoint := json.StringOf('authorization_endpoint');
  device_authorization_endpoint := json.StringOf('device_authorization_endpoint');
  http_logout_supported := json.BoolOf('http_logout_supported');
  frontchannel_logout_supported := json.BoolOf('frontchannel_logout_supported');
  end_session_endpoint := json.StringOf('end_session_endpoint');
  kerberos_endpoint := json.StringOf('kerberos_endpoint');
  tenant_region_scope := json.StringOf('tenant_region_scope');
  cloud_instance_name := json.StringOf('cloud_instance_name');
  cloud_graph_host_name := json.StringOf('cloud_graph_host_name');
  msgraph_host := json.StringOf('msgraph_host');
  rbac_url := json.StringOf('rbac_url');
  i := 0;
  count_i := json.SizeOfArray('token_endpoint_auth_methods_supported');
  while i < count_i do
    begin
      json.I := i;
      strVal := json.StringOf('token_endpoint_auth_methods_supported[i]');
      i := i + 1;
    end;

  i := 0;
  count_i := json.SizeOfArray('response_modes_supported');
  while i < count_i do
    begin
      json.I := i;
      strVal := json.StringOf('response_modes_supported[i]');
      i := i + 1;
    end;

  i := 0;
  count_i := json.SizeOfArray('subject_types_supported');
  while i < count_i do
    begin
      json.I := i;
      strVal := json.StringOf('subject_types_supported[i]');
      i := i + 1;
    end;

  i := 0;
  count_i := json.SizeOfArray('id_token_signing_alg_values_supported');
  while i < count_i do
    begin
      json.I := i;
      strVal := json.StringOf('id_token_signing_alg_values_supported[i]');
      i := i + 1;
    end;

  i := 0;
  count_i := json.SizeOfArray('response_types_supported');
  while i < count_i do
    begin
      json.I := i;
      strVal := json.StringOf('response_types_supported[i]');
      i := i + 1;
    end;

  i := 0;
  count_i := json.SizeOfArray('scopes_supported');
  while i < count_i do
    begin
      json.I := i;
      strVal := json.StringOf('scopes_supported[i]');
      i := i + 1;
    end;

  i := 0;
  count_i := json.SizeOfArray('claims_supported');
  while i < count_i do
    begin
      json.I := i;
      strVal := json.StringOf('claims_supported[i]');
      i := i + 1;
    end;



  http.Free;
  resp.Free;
  json.Free;

end;

// ---------------------------------------------------------------------------

begin

  try
    RunDemo;
  except
    on E: Exception do
      WriteLn('Unhandled exception: ', E.ClassName, ': ', E.Message);
  end;

  WriteLn;
  {$IFDEF MSWINDOWS}
  WriteLn('Press Enter to exit...');
  ReadLn;
  {$ENDIF}
end.