Swift
Swift
IMAP Auto-Refresh Office365 Access Token
See more Office365 Examples
Demonstrates how to automatically recover from an expired access token when OAuth2 authentication fails in the IMAP protocol. If the server responds with "NO AUTHENTICATE failed.", then we refresh the access token and retry.Chilkat Swift Downloads
func chilkatTest() {
var success: Bool = false
// An Office365 OAuth2 access token must first be obtained prior
// to running this code.
// Getting the OAuth2 access token for the 1st time requires the O365 account owner's
// interactive authorizaition via a web browser. Afterwards, the access token
// can be repeatedly refreshed automatically.
// See the following examples for getting and refreshing an OAuth2 access token
// Get Office365 SMTP/IMAP/POP3 OAuth2 Access Token
// Refresh Office365 SMTP/IMAP/POP3 OAuth2 Access Token
// First get our previously obtained OAuth2 access token.
let jsonToken = CkoJsonObject()!
success = jsonToken.loadFile(path: "qa_data/tokens/office365.json")
if success == false {
print("Failed to open the office365 OAuth JSON file.")
return
}
let imap = CkoImap()!
imap.ssl = true
imap.port = 993
// Connect to the Office365 IMAP server.
success = imap.connect(hostname: "outlook.office365.com")
if success != true {
print("\(imap.lastErrorText!)")
return
}
// Use OAuth2 authentication.
imap.authMethod = "XOAUTH2"
// Login using our username (i.e. email address) and the access token for the password.
success = imap.login(login: "OFFICE365_EMAIL_ADDRESS", password: jsonToken.string(of: "access_token"))
if success != true {
var loginLastErrorText: String? = imap.lastErrorText
// If we're still connected to the mail server, then it means the server sent a non-success response,
// Such as: NO AUTHENTICATE failed.
if imap.isConnected() == true {
// Refresh the OAuth2 access token, and if successful, save the new (refreshed) access token and try authenticating again.
let oauth2 = CkoOAuth2()!
// Use your actual Directory (tenant) ID instead of "112d7ed6-71bf-4eba-a866-738364321bfc"
oauth2.tokenEndpoint = "https://login.microsoftonline.com/112d7ed6-71bf-4eba-a866-738364321bfc/oauth2/v2.0/token"
// Replace these with your Azure App Registration's actual values.
oauth2.clientId = "CLIENT_ID"
oauth2.clientSecret = "CLIENT_SECRET"
// Get the "refresh_token"
oauth2.refreshToken = jsonToken.string(of: "refresh_token")
// Send the HTTP POST to refresh the access token..
success = oauth2.refreshAccessToken()
if success != true {
print("\(oauth2.lastErrorText!)")
return
}
print("New access token: \(oauth2.accessToken!)")
print("New refresh token: \(oauth2.refreshToken!)")
// Update the JSON with the new tokens.
jsonToken.updateString(jsonPath: "access_token", value: oauth2.accessToken)
jsonToken.updateString(jsonPath: "refresh_token", value: oauth2.refreshToken)
// Save the new JSON access token response to a file.
let sbJson = CkoStringBuilder()!
jsonToken.emitCompact = false
jsonToken.emitSb(sb: sbJson)
sbJson.writeFile(path: "qa_data/tokens/office365.json", charset: "utf-8", emitBom: false)
print("New Access Token = \(oauth2.accessToken!)")
// Retry the login.
success = imap.login(login: "OFFICE365_EMAIL_ADDRESS", password: jsonToken.string(of: "access_token"))
if success == false {
print("\(imap.lastErrorText!)")
return
}
}
else {
// Show the last error text for the call to Login
print("\(loginLastErrorText!)")
return
}
}
else {
print("O365 OAuth authentication is successful.")
}
// Do something...
success = imap.selectMailbox(mailbox: "Inbox")
if success != true {
print("\(imap.lastErrorText!)")
return
}
// Your application can continue to do other things in the IMAP session....
// When finished, logout and close the connection.
success = imap.logout()
success = imap.disconnect()
print("Finished.")
}