Hey there Auth0,
RFC 7662 for secure OAuth2 Token Introspection is broadly required to leverage OAuth2 powered by Auth0. Is there any particular reason why Auth0 doesn’t provide an endpoint to support this standard, despite feature requests for a number of years now? For instance, are there security flaws or other worrisome reasons why it couldn’t be implemented by Auth0?
Since this has been requested a few times, is this feature on the roadmap, and if not, how would one go about petitioning or lobbying to see it scheduled?