Configure app within M365 - Application based permissions - Client Secret (Not recommended)

the preferred method to authenticate with the graph api is via application based permissions using office 365 sharepoint as a docuflow repository you will need to ensure that the enterprise connector is configured and able to connect to the microsoft graph api you must create an enterprise application via the microsoft azure portal to complete this procedure this will require an account with appropriate level of permissions to grant correct access rights to a user (connector user) using the graph api when inside the azure portal you can either self grant access or have an admin grant access to the graph api and its corresponding access rules inside the azure portal if and only if that user has authority to grant access to those rules the following steps below outline this process i visit https //portal azure com/ then login using an appropriate account ii click on active driectory, then click on app registrations and click on new registration name the application docuflow suffix (either dev, test,prod) depending on environment provisioning select single tenant click register click api permissions under manage click add permissions select microsoft graph, and then select application permissions type "sites" in the search and select sites manage all for permissions if you want to do permissions granuarly at the site level follow, you may choose site selected please reference this guide from microsoft for site level permissions https //learn microsoft com/en us/graph/api/site post permissions?view=graph rest beta\&tabs=http (we have also included a summary of the site level permissions here ) click grant admin consent for docuflowdemo click certificates and secrets click new client secret type in for the description docuflow suffix (where the suffix is dev/test/prd select the appropriate expiry time save the value which is the secret required to configure the docuflow middleware later click on overview and save the following information app id, and tenant id secret id configure docuflow in gui visit http //localhost 82 (enter the default user and password) click "sharepoint online" click "add row" enter the saved details in the previous page and enter them in the correct locations click test connection if "success" is displayed the configuration has was done correctly note for our application scope will always be https //graph microsoft com/ default https //graph microsoft com/ default the token url and graph url always contain the tenant id in the url graph url https //graph windows net/\<inserttenantid https //graph windows net/ token url https //login microsoftonline com/\<inserttenantid>/oauth2/token https //login microsoftonline com/4de6eaf6 cf7a 47de b747 6e3bffb4a/oauth2/token these are only sample values in screenshot (replace with actual values from steps above)