We have internal client applications that access our asp.net core web api using Oauth Client Credential flow. We want to be able log the name of the client application that submits the request. However, the application name (the display name on the azure application registration) is not included in the access token. I am guessing we could use the value of the claim 'azp', which appears to be the object id of the client application. However, I am not sure if this is the right approach since I could not find an MSAL class/method that would let me access the application name.
What's the best way to get the name of the client application when the access token only contains the object/client id?