Register a confidential client application in Azure Active Directory
In this article, you'll learn how to register a confidential client application in Azure Active Directory.
A client application registration is an Azure Active Directory representation of an application that can be used to authenticate on behalf of a user and request access to resource applications. A confidential client application is an application that can be trusted to hold a secret and present that secret when requesting access tokens. Examples of confidential applications are server-side applications.
To register a new confidential application in the portal, follow the steps below.
App registrations in Azure portal
In the Azure portal, on the left navigation panel, click Azure Active Directory.
In the Azure Active Directory blade click App registrations:
Click the New registration.
Register a new application
Give the application a display name.
Provide a reply URL. These details can be changed later, but if you know the reply URL of your application, enter it now.
Next add API permissions:
Open the API permissions:
Click Add a permission
Select appropriate resource API:
For the Azure API for FHIR (managed service), click APIs my organization uses and search for "Azure Healthcare APIs". For the Open Source FHIR server for Azure, select your FHIR API Resource Application Registration:
Select scopes (permissions) that the confidential application should be able to ask for on behalf of a user:
Create an application secret (client secret):
Provide a description and duration of the secret.
Once generated, it will be displayed in the portal only once. Make a note of it and store it securely.
In this article, you've learned how to register a confidential client application in Azure Active Directory. Next, deploy a FHIR API in Azure.