Lately I have been looking at authenticating to Azure AD without having to rely an a 'shared' secret. That is, for the most part, how the code samples about Azure AD are crafted, there is usually a step to generate an application secret and then paste it in a configuration