You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
MCP OAuth/OIDC discovery for third-party clients. Serve /.well-known/openid-configuration and the per-server oauth-authorization-server / oauth-protected-resource metadata (RFC 8414/9728). Clients that append the resource path during discovery — e.g. Microsoft Copilot Studio — can now complete the OAuth flow and connect. The 401WWW-Authenticate header now points resource_metadata at the per-server document. Additive only; existing clients (Dynamic Client Registration, e.g. Claude) are unaffected.