Exception
Thrown if the given 'state' parameter doesn't contain the CSRF token from the user's session. This is blocked to prevent CSRF attacks.
The recommended action is to respond with an HTTP 403 error page.