We are slowly migrating to new instance of OAuth server. The old version is still in use, but I’m gonna switch it off soon. There are some (simple) changes that you should done:
Change URL of the authorization endpoint and the token endpoint:
Make that social.backends.oauth passes client_id and client_secret using Authorization header (as Authorization: Basic base64(<client_id>:<client_secret>)) and not in the request’s body (it’s not recommended by RFC and allowed anymore); see this page for more information.
Use new userinfo endpoint instead of tokeninfo endpoint to obtain username of the user who authorized the token: