Get an authorization code from identity server.
If all goes well, you'll receive an HTTP 302 response. The authorization code is included at the end of the URL.
HTTP/1.1 302 Found
Location: https://YOUR_APP/callback?code=AUTHORIZATION_CODE&state=xyzABC123