POST {Token Endpoint} HTTP/1.1
Host: {Authorization Server}
Content-Type: application/x-www-form-urlencoded

grant_type=authorization_code&
code={Authorization Code}&
redirect_uri={Redirect URI}&
client_id={Client ID}& // Dla klienta publicznego secret jest pomijany
code_verifier=abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789-._~
