# OAuth Authorization Endpoint

Initiates the OAuth authorization flow. This endpoint redirects the user to an authorization page 
where they can grant or deny access. After user interaction, they are redirected back to the 
client's redirect_uri with an authorization code in the URL parameters.

Endpoint: GET /oauth2/authorize
Version: 1.0.3
Security: 

## Query parameters:

  - `response_type` (string, required)
    The response type, must be "code" for authorization code flow
    Enum: "code"

  - `client_id` (string, required)
    The client identifier

  - `redirect_uri` (string, required)
    The redirect URI where the authorization code will be sent

  - `scope` (string)
    Space-separated list of OAuth scopes.
- openid: Required for OpenID Connect
- profile: Access to user profile information
- email: Access to user email address
- phone: Access to user phone number
- read:company: Access to company information

  - `state` (string)
    State parameter should be a JSON object stringified, then base64 encoded, then URI encoded.
Contains any application-specific data.

## Response 200 fields (application/json):

  - `code` (string)
    Authorization code

  - `state` (string)
    State parameter returned from request