You redirect/link the user to that URL (for web apps) or open the user’s browser with that URL (for local apps) to get the user’s authorization.
Auth code flow goes roughly as follows:
- make user go to the authorization page
- user returns to redirect_uri with a
codeGET param - application makes a request to the auth endpoint to exchange
codefor an access token.