mod_http_oauth2: Reflect changes to defaults etc - Resource owner password grant was disabled by default - Tokens now include a hash of client_id making it possible to be reasonable sure that they were issued to a particular client

This module discards typing notifications sent to a bare host JID,
preventing error replies to be sent. These errors are harmless but can
be annoying sometimes if your client shows them prominently.