Support for native OAuth apps, and RFC 8252?

Use http://localhost/ instead of 127.0.0.1