The appliance secret you made in the app registration portal for the application. Don't use the applying secret in a local application or single site app mainly because a client_secret cannot be reliably stored on units or web pages. It really is expected for World wide web applications and Internet APIs, which could keep the client_secret securely