Hi !
I am using Implicit authentication flow.
- User clicks on https://sketchfab.com/oauth2/authorize/?state=xxx&response_type=token&client_id=xxxx&approval_prompt=auto
- After successful approval, I get redirected to the good URI, but the query string is malformed ie: http://mydomain.com/path#state=xxx&access_token=yyy&expires_in=2592000&scope=read+write&token_type=Bearer
There is a # instead of a ? in the URL.
In case of a denial of approval, redirect URI is well formed though (http://mydomain.com/path?error=access_denied&state=xxx)
Is it normal ?
Thanks!