Hey @marybeth.hunter ,
thank you for the thorough explanation - but again, it does not touch what I need.
When the user returns from the universal login flow (which happens on the tenant, and NOT on my application), they’ll go to the handleCallback SDK method.
This method, internally, makes a request to the tenant, on the /oauth/token endpoint, correct? This request is the one I need to add custom query parameters.
The handleLogin method does not apply to the situation.
And the other example you mentioned, where I make a request to your-api-endpoint.com, is trivial - of course if my application (i.e., I control it) makes a request to some endpoint I can add whatever I want to it.
The problem is with the internal requests the SDK makes to the tenant.