The appliance key that you made while in the application registration portal on your app. Really don't use the application top secret in a native app or single site app simply because a client_secret cannot be reliably stored on equipment or Websites. It's needed for web apps and web APIs, which could shop the client_secret securely over the server