Just to focus our (re)discussion and how we got here:
Initial:
- We can’t upgrade to v8 flow without drastic changes to our current custom login page
- Outcome: We keep using v7 since until upgrades are made to make our life easier
Resurrection:
- We need to use Redirect rules. They are not compatible with /oauth/ro
- Moving away from /oauth/ro is solved best by ‘upgrading’ v7 to v8 (/oauth/token)
So we’re back to discussing ‘drastic changes’ which implies hosted login pages.