Backend should has the base route for handling callback errors. Important point: the registered callback address should be the base address for auth code callback and for the token callback.
[ ] GET /callback?code= - redirect to the frontend (payload: code & referrer?)
[ ] GET /callback?error= - redirect to the frontend (payload: error & referrer?)
[ ] GET /callback?access_token= - should complete the frondend "exchangeAuthCode" request #7 with token
[ ] POST /callback + { access_token } - should complete the frondend "exchangeAuthCode" request #7 with error
[ ] POST /callback + { error } - should complete the frondend "exchangeAuthCode" request #7 with error
Backend should has the base route for handling callback errors. Important point: the registered callback address should be the base address for auth code callback and for the token callback.
/callback?code=
- redirect to the frontend (payload: code & referrer?)/callback?error=
- redirect to the frontend (payload: error & referrer?)/callback?access_token=
- should complete the frondend "exchangeAuthCode" request #7 with token/callback
+ { access_token } - should complete the frondend "exchangeAuthCode" request #7 with error/callback
+ { error } - should complete the frondend "exchangeAuthCode" request #7 with error