Provide a .well-known/oauth-authorization-server for MCP authorization

:waving_hand::waving_hand::waving_hand:

Feature: Like the .well-known/openid-configuration endpoint, we need a similar .well-known/oauth-authorization-server.

Description: RFC8414 describes authorization server metadata for OAuth2. This is used when doing MCP authorization, as described in the MPC spec … which I can’t link to but it’s in the 2025-03-26 version > basic > authorization > section 2-3-server-metadata-discovery

Use-case: We want to use Auth0 to log into our MCP client and call APIs.

Okta servers have one:

https://okta.okta.com/.well-known/oauth-authorization-server