2.13.2

(fix): Send request bodies declared with the application/x-www-form-urlencoded content type (e.g. OAuth token endpoints) as form-urlencoded instead of JSON. A new UrlEncodedApiRequest core type encodes the body with http_build_query and sets the Content-Type: application/x-www-form-urlencoded header.

2.13.1

(fix): Wire OAuth client-credentials authentication into the root client when the OAuth scheme is not the first scheme in the API’s auth configuration (e.g. auth: any with basic auth listed before OAuth). Previously the OAuth token provider was only generated when OAuth was the first auth scheme, so the root client silently fell back to the other schemes and never used the OAuth credentials. When both an OAuth and an inferred auth scheme are present, the provider-based scheme that appears first in the auth configuration is used.

(fix): Send grant_type: "client_credentials" in the OAuth token request when the token endpoint’s grant_type property is a non-literal string. Previously the property was omitted (when optional) or surfaced as a required constructor parameter (when required), so token endpoints that require grant_type rejected the request.