I am having an issue trying to build an app around the 3LO OAuth2 flow.
I get the initial Authorization URL from my App page with the OAuth scopes of read:jira-user and read:jira-work. I get a URL back with a code in it. I then take the code and attempt to generate the access_token through postman:
@haskovec Thanks for reaching out. It took me a while to spot what was triggering the error you see Your payload is mostly correct, apart from the client_id line where you have an extra colon in the key.
I think when I get a 401 that isn’t intuitive for this situation. It feels like a better error would be a 400 so that I would know that there was something wrong with my request.
In any event I got a new code, scoped with read:jira_users, read:jira_work, and offline access and received back my access token and refresh token as expected.