mod_http_oauth2: Validate consistency of response and grant types Ensure that these correlated fields make sense per RFC 7591 § 2.1, even though we currently only check the response type during authorization. This could probably all be deleted if (when!) we remove the implicit grant, since then these things don't make any sense anymore.

module:hook("authentication-success", function (event)
	local session = event.session;
	local sasl_handler = session.sasl_handler;
	session.log("info", "Authenticated with %s", sasl_handler and sasl_handler.selected or "legacy auth");
end);