I’m currently trying to get authorized on my .NET Core Web API backend via Android.
I added Lock Android on my mobile app and am logging in through Google. That all works and I generate tokens. I then created an API through the management portal and tested that the test bearer tokens work correctly on my backend API.
I’m trying to figure how to get a token on my Android app that works for my backend as well. From what I’ve gathered I need to use the PKCE flow from this article:
My only question is do I still practice in the normal Lock flow and start at point 1? Or do I start from somewhere else. It isn’t clear to me and I feel like I’m going in circles.
Also, isn’t there a way to use one client for both mobile and backend?