As some platforms support JSON payloads, would you consider supporting application/json as an alternative to x-www-form-urlencoded?

Looking at the source code you've already got Jackson for the config, so it wouldn't be a painful change.

It appears this may have been the basis for those implementations https://www.ietf.org/archive/id/draft-richer-oauth-json-request-00.html