Sample code for 30+ languages & platforms
Pascal (Lazarus/Delphi)

Microsoft Graph Revoke OAuth2 Access Tokens

See more Microsoft Graph Examples

Invalidates all the refresh tokens issued to applications for a user (as well as session cookies in a user's browser), by resetting the signInSessionsValidFromDateTime user property to the current date-time. Typically, this operation is performed (by the user or an administrator) if the user has a lost or stolen device. This operation prevents access to the organization's data through applications on the device by requiring the user to sign in again to all applications that they have previously consented to, independent of device.

Chilkat Pascal (Lazarus/Delphi) Downloads

Pascal (Lazarus/Delphi)
program ChilkatDemo;

// Demonstrates using the Chilkat Pascal wrapper via the C bridge DLL.
// Builds as a console application under Lazarus (FPC) or Delphi.

{$IFDEF FPC}
  {$MODE DELPHI}
{$ENDIF}
{$APPTYPE CONSOLE}

uses
  {$IFDEF UNIX}
  cthreads,
  {$ENDIF}
  SysUtils,
  CkDllLoader,
  Chilkat.Http,
  Chilkat.HttpResponse,
  Chilkat.JsonObject;

// ---------------------------------------------------------------------------

procedure RunDemo;
var
  success: Boolean;
  http: THttp;
  resp: THttpResponse;
  json: TJsonObject;

begin
  success := False;

  //  This example requires the Chilkat API to have been previously unlocked.
  //  See Global Unlock Sample for sample code.

  //  Send a POST as shown below to invalidate all the refresh tokens issued to applications for a user (as well as session cookies in a user's browser),
  //  

  //  	POST /v1.0/me/revokeSignInSessions HTTP/1.1
  //  	Host: graph.microsoft.com
  //       Authorization: Bearer ACCESS_TOKEN
  //  	Content-Type: application/json
  //  	Content-Length: 0
  //  
  //  or specify a specific user:
  //  
  //  	POST /v1.0/users/{id | userPrincipalName}/revokeSignInSessions HTTP/1.1
  //  	Host: graph.microsoft.com
  //       Authorization: Bearer ACCESS_TOKEN
  //  	Content-Type: application/json
  //  	Content-Length: 0

  http := THttp.Create;

  //  Set the http.AuthToken property to automatically add the "Authorization: Bearer ACCESS_TOKEN" header
  http.AuthToken := 'ACCESS_TOKEN';

  //  Send an empty JSON request body.
  resp := THttpResponse.Create;
  success := http.HttpStr('POST','https://graph.microsoft.com/v1.0/me/revokeSignInSessions','','utf-8','application/json',resp);
  if (success = False) then
    begin
      WriteLn(http.LastErrorText);
      Exit;
    end;

  //  A response code of 204 is success
  if (resp.StatusCode = 204) then
    begin
      WriteLn('Success.');
      Exit;
    end;

  //  We have an error...

  //  Load the JSON response.
  json := TJsonObject.Create;
  json.Load(resp.BodyStr);
  json.EmitCompact := False;

  //  Show the JSON response.
  WriteLn(json.Emit());

  WriteLn('Response status code: ' + resp.StatusCode);


  http.Free;
  resp.Free;
  json.Free;

end;

// ---------------------------------------------------------------------------

begin

  try
    RunDemo;
  except
    on E: Exception do
      WriteLn('Unhandled exception: ', E.ClassName, ': ', E.Message);
  end;

  WriteLn;
  {$IFDEF MSWINDOWS}
  WriteLn('Press Enter to exit...');
  ReadLn;
  {$ENDIF}
end.