Odd - we didn't get an authorization code passed back to us. I wonder why?
This demo uses a client ID which is only allowed to request the identity scope.
Your own client ID will be able to request the read and write scopes, which are far better.
If you hit an error, you can start over.