handleCodeFlow is executed twice

Describe the bug It seems handleCodeFlow is executed twice: one succeeds because it can access the PKCE code, and the second one fails as it does not have a code_verifier attribute. The second one kicks off a cascade of errors stemming from either invalid_request or invalid_grant. Sometimes this leads to authentication failure, even though the response from the hosted UI was successful.

Authentication fails sporadically even though my hosted UI flow was successful, and even though my code could be redeemed successfully.

To Reproduce Running on: “aws-amplify”: “^1.1.29”, “aws-amplify-react-native”: “^2.1.9”,

Steps to reproduce the behavior:

1. use Expo 33 (ejected) with RN 59.8
2. use hosted UI w/Cognito as the provider
3. configure oauth with the expo urlOpener
4. register for hub events in a login component
5. sign in and observe two “Calling token endpoint” debug messages
6. one will have a code_verifier attribute and one won’t
7. sporadic authentication failure (keep retrying and it’ll happen eventually)

The subsequent request that fails will bounce between invalid_grant and invalid_request. It alternates, and I can’t seem to spot a pattern that explains why auth fails when it does vs. when it passes.

Expected behavior I would expect only a single login event, and the handleCodeFlow code to only run once so that there’s no conflict between what can consume the PKCE value.

Screenshots If applicable, add screenshots to help explain your problem.

Smartphone (please complete the following information):

• Device: iPhone XR (simulator)
• OS: iOS 12

Additional context Note: this implements a change to _handleCodeFlow to address the bug in #3247 – the only change that’s made is to replace the body: body part of the fetch. The issue is as described in this comment, too.

Seems like it may be related to #3183

Sample code Include additional sample code or a sample repository to help us reproduce the issue. (Be sure to remove any sensitive data)