mod_http_oauth2: Strip unknown client metadata
Per RFC 7591
> The authorization server MUST ignore any client metadata sent by the
> client that it does not understand (for instance, by silently removing
> unknown metadata from the client's registration record during
> processing).
This was previously done but unintentionally removed in 90449babaa48
Contributing
============
Guidelines for developers
-------------------------
- Each module should be contained in a folder of its name (e.g.\
`mod_ping/mod_ping.lua`)
- Each module should have a `README.markdown` page in their folder
with a description, usage, configuration and todo sections (feel
free to copy an existing one as a template)
- Commit messages should begin with the name of the plugin they are
for (e.g. `mod_ping: Set correct namespace on pongs`)
Instructions on cloning the repository are at
<https://prosody.im/doc/installing_modules#prosody-modules>