thunderbird opens a little browser window for oauth2 and since its the browser it just checks when the browser is redirecting to the redirect uri and uses that instead of listening on localhost. but if you already have somethin on https ://localhost then it fails to get this redirect caught because its an error? and then it doesnt work. if you stop listening on ssl localhost it works.
@mozilla pls fix