Result from SCAuthManager.initLogin — redirect the user to url, then persist state (e.g. in a short-lived httpOnly cookie) so you can verify it in the OAuth callback.
url
state
Random CSRF state token. Store this securely (httpOnly cookie) and compare it against the state param in the OAuth callback.
The full SoundCloud authorize URL to redirect the user to.
Result from SCAuthManager.initLogin — redirect the user to
url, then persiststate(e.g. in a short-lived httpOnly cookie) so you can verify it in the OAuth callback.