We’re developing app that uses zoom oAuth and calls zoom API from our backend server on-behalf of user. User should be prompted for authentication in our client app (our SPA web, Android or iOS application) and then our server should receive access and refresh tokens of user. One way to do this is to implement auth code flow where after client receiving auth code we send it to our backend server and server exchanging auth code for tokens. Is this valid approach? And if it is, how to implement it on mobile platforms? Cause there is no ability to use different redirect URIs for mobile.