How To Fetch Access Token Using Microsoft Graph API

In this article, I have explained how Microsoft Graph API works.

In this article, I have explained how Microsoft Graph API works; then how to create an app to consume Microsoft Graph API in your web applications, mobile apps, and web API. Then, we will also discuss how to fetch access token to consume Graph API data from your applications.
 
Microsoft Graph API
 
Microsoft Graph API allows the data to interact with millions of users in the cloud.
 
Using Microsoft Graph API, you are able to create applications for your organization with single Graph API endpoints.
 
Endpoint URL : http://graph.microsoft.com
 
Use of Microsoft Graph API
  • Create, manage, and view Office 365 calendar events and also find your meeting times.
  •  Access information for the relevant people from Office 365 users.
Getting Started with Graph API
  • Register your application from Microsoft apps registration portal
  • Authenticate the user to fetch the access token through OAuth Protocol
  • Consume the data using Microsoft Graph API
  • Run the application.
Let's discuss how to fetch the access token based on the user.
 
 Navigate to the app registration portal  https://apps.dev.microsoft.com 
 
 Log in to your tenant account.

Microsoft Graph API

 Click "Add an app" button to register your app.
 
Provide the Application Name and click Create.
 
Microsoft Graph API
After successful creation of the app, it shows what kind of application is going to consume the data from Microsoft Graph API.

Microsoft Graph API 
 
Copy the unique Application Id later used in an API to fetch access token.
 
Generate the application secrets to authenticate the app.

Microsoft Graph API 

Microsoft Graph API
 
In a Platform for web-based applications, use "WEB Platform" for Web API;  you can choose "WEB API Platform" and for mobile based applications use "Native Platform".
 
Now, I have chosen "Web platform" to play with SharePoint.
 
 Provide the redirect URL for the application.


Microsoft Graph API

Provide the redirect URL  of your web application 
 
The "Allow implicit flow" allows the option to enable the Open Id to connect hybrid and implicit flows. The hybrid flow enables the user to receive sign-in info for obtaining the access token.
 
 Click "Save" to complete the App registration.

Microsoft Graph API
 
 
 
 Fetch Access Token
  1. Host : https://login.microsoftonline.com  
  2.    
  3. POST: /{tenant}/common/oauth2/v2.0/token  
  4.    
  5. Content Type:  application/x-www-form-urlencoded  
  6.    
  7. Client ID:   *****************  
  8.    
  9. Client Secret: ********************  
  10.    
  11. grant_type: client_credentials   
Tenant: The directory you want to request permission from (for ex; contoso.onmicrosoft.com).
 
Client ID: The unique Id generated from the app registration portal
 
Client Secret: The password generated from the app registration portal.
 
Scope: http://graph.microsoft.com/.default. This applies all the application permissions to the app.
 
grant_type: It will be client_credentials
 
 Code
  1. <script src="https://ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js"></script>
  2.   
  3. <script type="text/javascript">  
  4.     $(document).ready(function() {  
  5.         requestToken();  
  6.     });  
  7.   
  8.     var token;  
  9.   
  10.     function requestToken() {  
  11.   
  12.         $.ajax({  
  13.             "async"true,  
  14.             "crossDomain"true,  
  15.             "url""https://cors-anywhere.herokuapp.com/https://login.microsoftonline.com/sharepointtechie.onmicrosoft.com/oauth2/v2.0/token", // Pass your tenant name instead of sharepointtechie    
  16.             "method""POST",  
  17.             "headers": {  
  18.                 "content-type""application/x-www-form-urlencoded"  
  19.             },  
  20.             "data": {  
  21.                 "grant_type""client_credentials",  
  22.                 "client_id ""8baf0301-27df-44b1-b4fe-7911b9a918de"//Provide your app id    
  23.                 "client_secret""**********"//Provide your client secret genereated from your app
  24.                 "scope ""https://graph.microsoft.com/.default"  
  25.             },  
  26.             success: function(response) {  
  27.                 console.log(response);  
  28.                 token = response.access_token;
  29.                 document.getElementById('content').innerHTML = token;
  30.             }  
  31.   
  32.         })  
  33.     }  
  34. </script>  
  35. <p id="content"></p>
Open SharePoint site -> Add a content editor webpart -> link the HTML file; it contains the above script  -> Click OK.
 
Here is the result in the console window. Now, we have successfully fetched the access token.

Microsoft Graph API
 
 In my next article, let's see how to fetch users, groups, calendar events and a lot more stuff using Microsoft Graph API.
 
Happy SharePointing!