Sign into Azure AD portal at https://portal.azure.com/
Click "App registration"
Click "New registration"
Enter a name for the new application, e.g. SafeID Token Service, then click "Register"
Take a note of the "Application (client) ID"
Now, click "Endpoints" in the toolbar on the top
Take a note of the following settings:
- OAuth 2.0 authorization endpoint (v2)
- OpenID Connect metadata document
Now, click "Authentication" in the left panel
Click "Add a platform"
Click the "Web" tile
In "Redirect URIs" enter "https://admin.safeid.io/Account/OpenIdSignIn"
And, tick the option "ID tokens (used for implicit and hybrid flows)"
Then click the "Configure" button
Click "Add URI"
Enter "https://user.safeid.io/Account/OpenIdSignIn"
Click "Save" in the toolbar on the top
Click "Certificates & secrets" in the panel on the left
Click "New client secret"
Enter a descrption and select the expiration start and end date
Then, click the "Add" button to save
Now, you must take a note of the "Value" in the "Client secret" section. This value will be used later as the "Application Secret".