The Authorization Code flow is best used in web and mobile apps. This is the flow used for third party integration, the user authorizes your partner to access its products in your APIs and get the authorization code. This code is needed along with client_id and client_secret to get the access token.
|response_type which should be set to code for now
|client_id that is registered in FortiAuthenticator
|Redirect URL after successful or failed authentication
|Redirect to portal for authentication.
|Portal for authentication
|Successfully redirected to the portal.
|Callback URL with error
|In case of error client will be redirected to redirect_uri with error and error_description.
redirect to the portal specified in the policy of relying party configuration