I’m making my teeth at the dom api, and beginning to see how to handle errors and cases.
I Noticed something which seems strange to me :
when the user denies authorization, the app is returned a authUri that looks valid.
for example :
start browser in mock routing, start web_api_playground. run “initialize”, then run “authorise”, but now DENY when asked , you get :
App was authorised and auth URI received: safe-bmV0Lm1haWRzYWZlLmFwaV9wbGF5Z3JvdW5kLndlYmNsaWVudC4xMA==:AQAAANddw6cAAAAAAQAAAAAAAAA=
I get the same with some homebrew test webapps.
I would expect the app would be rejected and no authUri would be sent ?