added it in the config

server/modules/authentication/azure/authentication.js

@@ -32,7 +32,7 @@ module.exports = {
         responseMode: 'form_post',
         scope: ['profile', 'email', 'openid'],
         allowHttpForRedirectUrl: WIKI.IS_DEBUG,
-        clientSecret: 'clientSecret', // needs to be in the config of the Azure.
+        clientSecret: conf.clientSecretValueString,
         passReqToCallback: true,
         cookieSameSite: keyArray.length > 0,
         useCookieInsteadOfSession: keyArray.length > 0,
@@ -45,7 +45,6 @@ module.exports = {
             access_token
           );
 
-
           const user = await WIKI.models.users.processProfile({
             providerKey: req.params.strategy,
             profile: {

server/modules/authentication/azure/definition.yml

@@ -22,8 +22,13 @@ props:
     title: Client ID
     hint: The client ID of your application in AAD (Azure Active Directory)
     order: 2
+  clientSecretValueString:
+    type: String
+    title: Client Secret Value String
+    hint: Some String
+    order: 3
   cookieEncryptionKeyString:
     type: String
     title: Cookie Encryption Key String
     hint: Random string with 44-character length.  Setting this enables workaround for Chrome's SameSite cookies.
-    order: 3
+    order: 4