Okay, that makes quite a bit more sense haha.
But how would you recommend I go about making the necessary requests in my situation? If I run the POST request from my redirect page (which is just a php file on localhost running a JS file) I will have access to the code in the URL but my token will only be accessed from there, correct? However, if I try to make a request from my Application, I will not have access to the code in the URL…
I am having trouble figuring out how to make the browser-based authentication communicate with my Application.