I've configured an Azure AD B2C tenant with two app registrations: one for my ASP.NET Core web API, another for my React SPA web client. I'm confused about client IDs and so can't get it to work. When using either MSAL.js 2.x or MSAL React to initially contact the auth server, don't I specify client IDs from both my web API and my React SPA app registrations? Upon reading the auth code flow doc, I'm confused. The example there shows the same client ID being sent as both the
client_id and a
scope. I thought my React SPA's client ID should go in
client_id and my web API's client ID should go in
scope. Which way is right?