Reject a client redirect_uri that is not safe to relay an authorization
code to. Fails closed by throwing InvalidRedirectUriException when the
redirect_uri is empty, uses a disallowed scheme (RFC 8252 §7.3), or is
not an exact match against any previously-registered redirect_uri (RFC
6749 §3.1.2.2 / §10.6). Called by both authorize overloads before any
proxy state is minted or the request is forwarded upstream.
Reject a client redirect_uri that is not safe to relay an authorization code to. Fails closed by throwing InvalidRedirectUriException when the redirect_uri is empty, uses a disallowed scheme (RFC 8252 §7.3), or is not an exact match against any previously-registered redirect_uri (RFC 6749 §3.1.2.2 / §10.6). Called by both authorize overloads before any proxy state is minted or the request is forwarded upstream.