Solid OIDC Primer Retrieves OP Configuration

[csarven]

In #authorization-code-pkce-flow-step-3:

The thing we care about here

Note that we only support the code response type.

Paraphrase.

However, implicit flows should not be used for security reasons. Therefore, we don’t recommend enabling them. For the same reason, we do not support the implicit grant type.

It is unclear whether these recommendations are expanding on the spec or suggesting best practices. If the latter, consider moving them to a separate; "Solid OIDC Best Practices and Guidelines".