Service application client secret basic oauth flow

Creating a service app from the console results in application created with token_endpoint_auth_method set to client_secret_basic while api reference only mentions ways to create using a public/private key pair, and the js sdk doesn’t support client_secret_basic either, is client_secret_basic auth method about to be deprecated?

We want to allow our users to add the integration as seamlessly as possible, but at this point it looks like there is no way to register public key against app from admin console?

What would be the suggested flow in this case?

Can you possibly use API to create one with jwks auth method?