Click here for notes on Microsoft Office 365
e.g. for an app called
Under the applications API permissions page, choose Add a permission, select Microsoft Graph, and then choose the permissions your app requires under Application permissions:
If you change permissions, users and/or admins will have to consent even if they have done so previously.
Under the applications Certificates & secrets page in the Client secrets section, create a New client secret:
I think you only get a single chance to copy this secret!
Copy the Application (client) ID to and client secret to your web app in Settings, Microsoft Graph, Settings:
Make a note of the Redirect URI for the next step.
Under the applications Authentication page in the Redirect URIs section, set the redirect URI for your web site.
The Redirect URI is displayed on your web site under Settings, Microsoft Graph, Settings.