dreamsbond

i am currently following your demo, in the meantime, i looked into the method "setRedirectUriStrings()", setRedirectUriStrings was obsolete, redirect uri can only be effective thru $this->seedClient for you information

besides the setRedirectUriStrings that i am look on. I got problems redirecting to login page where user were not logged in. here are the snippet: ```php public function createAskResourceOwnerForApprovalResponse( string...

try out hardcoding uri snippet: ```php public function createAskResourceOwnerForApprovalResponse( string $type, ClientInterface $client, string $redirectUri = null, bool $isScopeModified = false, array $scopeList = null, string $state = null, array...

another question in mind. the authorization code granted will be permanent or temporary?

i have just updated my fork, followed your guideline and works. i have another question. i am still curious about how limoncello(client) knows the user authenticated is eligible to access...

but on limoncello (client), i can see the validateScope is doing for scopes checking. but i checked that the oauth_token table behind do not have entry at all.

I see. So the code grant approval achieved the delegation to access the protected resources in limoncello (server). How would this associate with the limoncello (client) to access its local...

```php /** * @param string $username * @param string $password * * @return string */ private function requestOAuthToken(string $username, string $password): string { /** @var ResponseInterface $response */ $response =...

both default faker seeded username and password and; self-defined username and password works by replacing ```php assert(($token = json_decode((string)$response->getBody())) !== false); ``` with ```php $token = json_decode((string)$response->getBody()); assert($token !== false);...

default app cloned. seems does not help. ``` PHPUnit 6.5.7 by Sebastian Bergmann and contributors. Undefined variable: token ```