The application secret you produced while in the app registration portal for the app. Don't use the application key in a local application or one webpage app since a client_secret cannot be reliably saved on units or Websites. It really is necessary for World-wide-web apps and World wide web APIs, which may shop the client_secret securely over the