oc should be modified to take a flag called --auto for the login subcommand. When this flag is present oc should launch a browser with the target as the token endpoint with all parameters set correctly. The redirect URL should match the callback URL of the client and should be the local address on which oc is waiting for a callback. After receiving the authorization token oc should then exchange this for a user token with PKCE.

Acceptance Criteria:

• Functionality Implemented
• Tests for the new workflow which mock the browser launch and the callback.