For better security, we now require that all OAuth authorization endpoints, whether remote or local, use HTTPS.
Deprecation Stages (learn more)