The authorization_code that the app requested. The app can make use of the authorization code to ask for an obtain token for the goal source. Authorization codes are brief lived. Commonly, they expire immediately after about 10 minutes.InvalidExternalSecurityChallengeConfiguration - Statements sent by external supplier isn't really more than enough