Ok, this is much work for us, because we do not have a redirect url endpoint in our server.
But I still not get when the user has to grant permissions? I mean the streamer, who has installed the extension already needs to give our extension now permission for moderation:read, right? When will this show up?
Send the user you want to authenticate to your registered redirect URI
At which point are we doing that?
Do the streamers have to reinstall the extension?
We did not need the API till now, all informations we need are in the decrypted JWT token, except of this.