Provide a .well-known/oauth-authorization-server for MCP authorization

joshcanhelp · June 3, 2025, 12:20am

Feature: Like the .well-known/openid-configuration endpoint, we need a similar .well-known/oauth-authorization-server.

Description: RFC8414 describes authorization server metadata for OAuth2. This is used when doing MCP authorization, as described in the MPC spec … which I can’t link to but it’s in the 2025-03-26 version > basic > authorization > section 2-3-server-metadata-discovery

Use-case: We want to use Auth0 to log into our MCP client and call APIs.

joshcanhelp · June 3, 2025, 12:32am

Okta servers have one:

https://okta.okta.com/.well-known/oauth-authorization-server

Topic		Replies	Views
SSO with OIDC with an external IdP and Auth0 as AS (authorization service) JWT.io ouath , authorization-server , oidc-connection	2	814	May 15, 2024
An Introduction to MCP and Authorization Blog Discussions mcp	4	143	May 26, 2025
Support for additional client authentication methods at external IdP Product Feedback oidc , oidc-connection	8	3530	March 6, 2024
How to enable end_session_endpoint in /.well-known/openid-configuration? Get Help oauth-2-0-ropc , protocols	1	979	August 31, 2023
Auth0/Okta integration multiple connections alternative Get Help saml , okta	5	4814	July 26, 2019

Provide a .well-known/oauth-authorization-server for MCP authorization

Related topics