I have a question about “Support PKCE for authorization_code
grant_type” in Oauth2 Security Update. I am not clear what it means:
- Zoom support PKCE and the app can choose to use it; or
- The app must use it
PKCE is listed as optional in OAuth with Zoom