The application top secret you created from the application registration portal to your app. Really don't use the applying key in a local app or one web site app mainly because a client_secret cannot be reliably saved on equipment or Web content. It's necessary for World wide web apps and World wide web APIs, which often can store the client_secret