---
title: "Task 3: Test The Workflow"
description: The Test the Workflow endpoints perform the following actions:
component: pingone-api
page_id: pingone-api:workflow-library:platform-sso-and-authorization/openid-connect-oidc/pkce-authorization-code-flow/test-the-workflow
canonical_url: https://developer.pingidentity.com/pingone-api/workflow-library/platform-sso-and-authorization/openid-connect-oidc/pkce-authorization-code-flow/test-the-workflow.html
section_ids:
  what-youll-do: What you'll do
---

# Task 3: Test The Workflow

The Test the Workflow endpoints perform the following actions:

* Send an authorization request.

* Perform any sign-on actions.

* Return an access token.

The authorization and token endpoints that you'll call to test the workflow require an application ID to complete the sign-on action. The Postman uses the ID from the application you created in the Configure Your Environment collection.

## What you'll do

You will complete a sign-on flow that uses Proof Key for Code Exchange (PKCE) authorization to protect public clients.

* POST request to the authorize endpoint that includes the `code_challenge` and `code_challenge_method` values.

* POST request to submit the user's login credentials.

* POST request to the token endpoint that includes the `code_verifier` value to authenticate the request.

|   |                                                                                                                                                                                                                                                                                                                                                                     |
| - | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
|   | If you choose to use an alternate application, be aware that the variables in the Postman collections point to the application ID that you created in the Environment Configuration collection. You must change this value manually either in your Postman environment or in the endpoint's URL or parameters to run the requests using your alternate application. |

[Run in Postman](https://god.gw.postman.com/run-collection/3468883-962f361b-3afb-4f1b-99b8-ad89381af009?action=collection%2Ffork\&source=rip_markdown\&collection-url=entityId%3D3468883-962f361b-3afb-4f1b-99b8-ad89381af009%26entityType%3Dcollection%26workspaceId%3D3550b170-7818-4801-b1eb-dcb7b3f64263#?env%5BPingOne%20Workflow%20Library%20Template%20%28release%3A%202025-04-17%29%5D=W3sia2V5IjoidGxkIiwidmFsdWUiOiJjb20iLCJlbmFibGVkIjp0cnVlLCJ0eXBlIjoiZGVmYXVsdCJ9LHsia2V5IjoiYXV0aFBhdGgiLCJ2YWx1ZSI6Imh0dHBzOi8vYXV0aC5waW5nb25lLnt7dGxkfX0iLCJlbmFibGVkIjp0cnVlLCJ0eXBlIjoiZGVmYXVsdCJ9LHsia2V5IjoiYXBpUGF0aCIsInZhbHVlIjoiaHR0cHM6Ly9hcGkucGluZ29uZS57e3RsZH19L3YxIiwiZW5hYmxlZCI6dHJ1ZSwidHlwZSI6ImRlZmF1bHQifSx7ImtleSI6ImFkbWluRW52SUQiLCJ2YWx1ZSI6IiIsImVuYWJsZWQiOnRydWUsInR5cGUiOiJkZWZhdWx0In0seyJrZXkiOiJhZG1pbkFwcElEIiwidmFsdWUiOiIiLCJlbmFibGVkIjp0cnVlLCJ0eXBlIjoiZGVmYXVsdCJ9LHsia2V5IjoiYWRtaW5BcHBTZWNyZXQiLCJ2YWx1ZSI6IiIsImVuYWJsZWQiOnRydWUsInR5cGUiOiJkZWZhdWx0In0seyJrZXkiOiJlbnZJRCIsInZhbHVlIjoiIiwiZW5hYmxlZCI6dHJ1ZSwidHlwZSI6ImRlZmF1bHQifV0=)