Start FAB (Authorization Server) on http://127.0.0.1:8000/
Create an Application instance, making a note of the client ID and secret.
Redirect URI = http://0.0.0.0:5000/complete/forallbackpack/
Client type = Confidential
Authorization grant type = Authorization code
Skip authorization = CHECKED
Create oa2client database and run migrations.
Copy the client ID and secret to the project's setttings file:
FAB_SERVER_URL = 'http://127.0.0.1:8000'
FAB_CLIENT_ID = '...'
FAB_CLIENT_SECRET = '...'
Start oa2client on http://0.0.0.0:5000.
The login form is hosted on FAB site. After logging in, you should be redirected to the appropriate page in the oa2client site.
Once you are logged in, you should be able to visit any page on the oa2client site or on FAB without logging in.
Logging out will revoke the access token and log you out of both sites (FAB and oa2client).