Unfortunately, when registering an Application in AAD for access to the Dynamics API, only the 'Delegated Permissions' is electable, and I believe that 'Application Permissions' is what's required for a Client Credential flow.
Our web app cannot facilitate an Authorization Code flow. We might use a 'service account' credential, but to get this to work it appears necessary to configure the App as a public client, which is not secure.
What other options do we have here?
Thank you!
*This post is locked for comments