@mattly @janl and while you’re at it, add a well-known URL! https://github.com/w3c/webappsec-change-password-url#proposal(I think Safari, Chrome, 1Password support this now)