Also, when using the developer console to add to the "Redirect URLs" it states:
"Redirects
one per line
must be HTTPS"
Generally, the documentation for native app oauth2 / oidc clients recommends use of these private-use uri schemes. E.g., SDKs like AppAuth (https://appauth.io/).