Update OAuth consent UI to handle OAuth 2.0 Auth Code + PKCE

[rickyrombo]

No description provided.

[changeset-bot]

⚠️ No Changeset found

Latest commit: 809c217

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[Copilot]

Pull request overview

Adds support to the OAuth consent/login UI for OAuth 2.0 Authorization Code + PKCE by parsing PKCE params, validating them, exchanging the existing signed JWT for an authorization code, and redirecting/postMessaging the code back to the client.

Changes:

• Add exchangeForAuthorizationCode() helper to POST JWT + PKCE params to /v1/oauth/authorize.
• Parse response_type, code_challenge, code_challenge_method, and accept client_id as an alias for api_key.
• Add PKCE-specific query param validation + user-facing error messages.

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 3 comments.

File	Description
packages/web/src/pages/oauth-login-page/utils.ts	Adds the JWT→auth-code exchange helper calling the backend OAuth authorize endpoint.
packages/web/src/pages/oauth-login-page/hooks.ts	Parses PKCE params, validates them, and adds an auth-code redirect/postMessage path when response_type=code.
packages/web/src/pages/oauth-login-page/messages.ts	Adds new PKCE validation error strings.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.