Generate a random state value (base64url, 16 bytes of randomness) for the
authorization request (MCP "Open Redirection" mitigation). The bytes come
from the OS CSPRNG -- state is the CSRF / mix-up defense and MUST be
unpredictable. Throws CsprngException if the OS CSPRNG is unavailable.
Generate a random state value (base64url, 16 bytes of randomness) for the authorization request (MCP "Open Redirection" mitigation). The bytes come from the OS CSPRNG -- state is the CSRF / mix-up defense and MUST be unpredictable. Throws CsprngException if the OS CSPRNG is unavailable.