We are developing Alexa Smart Home account linking.
Our authorization API redirects correctly to the "redirect_uri" indicated by the skill, with the parameters "code" and "state".
But Alexa enters a series of redirects that end up with the cancellation of the authentication process.
Skill does not reach the token code exchange request.
According to the documentation the answer is correct. And the oAuth process works correctly with Postmant.