I’m still experimenting with this OAuth stuff.
I have now configured an “oob” workflow. The first step, getting a request token, works fine. I get what I expect. But the second step, the interactive, fails on the server. If I send my request_token to the authorize endpoint I get some HTML code back. I save this in a file and start a browser upon it, just to see what happens. I can see the page containing a user login and the two buttons. If I fill out the login correctly and press the submit button I get never something else but this:
“403 Forbidden: The server understood the request, but is refusing to fulfill it.”
What does this mean? And what is the reason for this? Why can this dialog fail?
I never saw a PIN until now