TODO: ApplyOauth should be a generic Apply that could be used for any oauth-client - should look like resourceapply.ApplyService and the other Apply funcs once its in a trustworthy state, PR to library-go so it can live with the other Apply funcs.

for ManagementState.Removed Console does not have create/delete priviledges on oauth clients, only update.

registers the console on the oauth client as a valid application.

we are the only application for this client in the future we may accept multiple routes for now, we can clobber the slice & reset the entire thing.