Sample code for 30+ languages & platforms
Pascal (Lazarus/Delphi)

Okta Client Credentials FLow

See more Okta OAuth/OIDC Examples

The Client Credentials flow is recommended for use in machine-to-machine authentication. Your application will need to securely store its Client ID and Secret and pass those to Okta in exchange for an access token. At a high-level, the flow only has two steps:
  • Your application passes its client credentials to your Okta authorization server.
  • If the credentials are accurate, Okta responds with an access token.

Note: This example uses "customScope". You'll replace it with whatever scope(s) you've defined for your app. Scopes are defined in your Authorization Server. See Okta Authorization Server / Scopes

Chilkat Pascal (Lazarus/Delphi) Downloads

Pascal (Lazarus/Delphi)
program ChilkatDemo;

// Demonstrates using the Chilkat Pascal wrapper via the C bridge DLL.
// Builds as a console application under Lazarus (FPC) or Delphi.

{$IFDEF FPC}
  {$MODE DELPHI}
{$ENDIF}
{$APPTYPE CONSOLE}

uses
  {$IFDEF UNIX}
  cthreads,
  {$ENDIF}
  SysUtils,
  CkDllLoader,
  Chilkat.Http,
  Chilkat.HttpRequest,
  Chilkat.HttpResponse,
  Chilkat.StringBuilder,
  Chilkat.JsonObject;

// ---------------------------------------------------------------------------

procedure RunDemo;
var
  success: Boolean;
  http: THttp;
  req: THttpRequest;
  resp: THttpResponse;
  sbResponseBody: TStringBuilder;
  jResp: TJsonObject;
  respStatusCode: Integer;
  access_token: string;
  token_type: string;
  expires_in: Integer;
  scope: string;

begin
  success := False;

  //  This example assumes the Chilkat API to have been previously unlocked.
  //  See Global Unlock Sample for sample code.

  http := THttp.Create;

  //  Implements the following CURL command:

  //  curl --request POST \
  //    --url https://{yourOktaDomain}/oauth2/default/v1/token \
  //    --header 'accept: application/json' \
  //    --user "client_id:client_secret" \
  //    --header 'cache-control: no-cache' \
  //    --header 'content-type: application/x-www-form-urlencoded' \
  //    --data 'grant_type=client_credentials&scope=customScope'

  http.Login := 'client_id';
  http.Password := 'client_secret';

  req := THttpRequest.Create;
  req.HttpVerb := 'POST';
  req.Path := '/oauth2/default/v1/token';
  req.ContentType := 'application/x-www-form-urlencoded';
  req.AddParam('grant_type','client_credentials');
  req.AddParam('scope','customScope');

  req.AddHeader('accept','application/json');

  resp := THttpResponse.Create;
  success := http.HttpReq('https://{yourOktaDomain}/oauth2/default/v1/token',req,resp);
  if (success = False) then
    begin
      WriteLn(http.LastErrorText);
      Exit;
    end;

  sbResponseBody := TStringBuilder.Create;
  resp.GetBodySb(sbResponseBody);
  jResp := TJsonObject.Create;
  jResp.LoadSb(sbResponseBody);
  jResp.EmitCompact := False;

  WriteLn('Response Body:');
  WriteLn(jResp.Emit());

  respStatusCode := resp.StatusCode;
  WriteLn('Response Status Code = ' + respStatusCode);
  if (respStatusCode >= 400) then
    begin
      WriteLn('Response Header:');
      WriteLn(resp.Header);
      WriteLn('Failed.');
      Exit;
    end;

  //  Sample JSON response:
  //  (Sample code for parsing the JSON response is shown below)

  //  {
  //    "access_token": "eyJraWQiO ... B2CnCLj7GRUW3mQ",
  //    "token_type": "Bearer",
  //    "expires_in": 3600,
  //    "scope": "customScope"
  //  }

  //  Sample code for parsing the JSON response...
  //  Use the following online tool to generate parsing code from sample JSON:
  //  Generate Parsing Code from JSON

  access_token := jResp.StringOf('access_token');
  token_type := jResp.StringOf('token_type');
  expires_in := jResp.IntOf('expires_in');
  scope := jResp.StringOf('scope');


  http.Free;
  req.Free;
  resp.Free;
  sbResponseBody.Free;
  jResp.Free;

end;

// ---------------------------------------------------------------------------

begin

  try
    RunDemo;
  except
    on E: Exception do
      WriteLn('Unhandled exception: ', E.ClassName, ': ', E.Message);
  end;

  WriteLn;
  {$IFDEF MSWINDOWS}
  WriteLn('Press Enter to exit...');
  ReadLn;
  {$ENDIF}
end.