We should check whether we are compliant with [FAPI 2.0](https://oauth.net/fapi/) and monitor [OAuth2.1](https://oauth.net/2.1/) to support it once it's out of a draft state.
We should check whether we are compliant with FAPI 2.0 and monitor OAuth2.1 to support it once it's out of a draft state.