OAuth v2 with PKCE documentation

timfreeman · 2021-12-19T15:31:01.064Z

There appears to be an issue on the OAuth 2.0 Authorization Code Flow with PKCE page.

Except for the first sentence, the description of “Access token” looks like it was meant for the “Authorization code” definition:

This allows an application to hit APIs on behalf of users. Known as the auth_code. The auth_code has a time limit of 30 seconds once the App owner receives an approved auth_code from the user. You will have to exchange it with an access token within 30 seconds, or the auth_code will expire.

jessicagarson · 2021-12-21T17:24:06.427Z

Thanks so much for pointing this out! I’ll take a look at this and make some changes soon.

jessicagarson · 2021-12-23T18:27:22.394Z

This has been updated.

system · 2022-01-06T18:28:13.102Z

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.