That makes sense, my mistake was that i thought “api/oauth2/token” was part of the new api. Just wondered why that was the case.
My point regarding the different types the scopes are returned still stands tho. It’s not really a must have, since there is an easy workaround but would be nice to make the api cleaner 