Requests to sandbox token URL return HTTP 400

[MrkGrgsn]

Requests for a token via the sandbox Public API using get_token_from_authorization_code() return a 400 error stating that I'm not allowed to use the member API. Changing the token URL to match the ORCID documentation (ie, changing it from https://api.sandbox.orcid.org/oauth/token to https://sandbox.orcid.org/oauth/token) resolves the error.

Not sure if this is a bug upstream or whether the current token URL is deprecated and should be changed here.