1. Register the App in Azure Active Directory (Microsoft Entra)

  1. Sign into the Azure Portal with admin credentials.

  2. Navigate to Azure Active Directory > App registrations.

  3. Click New registration.

  4. Enter your application name, select account type (e.g., Single or Multitenant).

  5. Set the Redirect URI (type: Web). This can be your application's URI or http://localhost for dev/test.

  6. Click Register.

  7. In the Overview tab, copy the Application (client) ID — this is your sharepoint_client_id.

    Official docs: Microsoft Docs - Register an Application

2. Generate a Client Secret

  1. Under your app registration, go to Certificates & secrets.

  2. Under Client secrets, click New client secret.

  3. Add a description and select an expiry period.

  4. Click Add.

  5. Copy the generated secret value and store it securely — this is your sharepoint_client_secret. (You won't be able to view it again after leaving the page)

    Official docs: Microsoft Docs - Add a Client Secret

3. Set API Permissions

  1. Under API permissions, click Add a permission.

  2. Choose SharePoint and select required permissions (e.g., Sites.ReadWrite.AllSites.Read.All).

  3. If you will use Microsoft Graph API, add its permissions as well.

  4. Click Add permissions and have an admin grant consent.

    Official docs: Microsoft Docs - Configure Permissions

4. (Alternative) Register via SharePoint Add-In Page