New top-level subcommand that resolves and reports the server URL
(with source attribution: flag/env/config), auth method, and config
file paths, then probes the remote server with two HTTP calls:
GET /api/v1/health for reachability and GET /api/v1/projects for
authorization. A 302 to cloudflareaccess.com on /projects while
/health stays 200 is distinguished from "server down" so users get
the right remediation suggestion (re-run `cloudflared access login`
vs. check the server URL).

Internals: _resolve_server and _resolve_auth grow with-source
siblings (_resolve_server_with_source, _resolve_auth_with_source +
AuthResolution dataclass) without breaking existing callers — the
old single-value functions delegate. _resolve_auth_with_source
takes fetch_cloudflared=False so status can describe a cloudflared
auth setup without actually shelling out to the binary, keeping the
command fast and offline-safe; the realistic probe re-resolves with
fetch enabled.

Supports --quick (skip probes), --json (machine-readable output),
and exits non-zero on any probe failure so it composes in scripts.

Bump to 0.5.7. Added to main._CLI_SUBCOMMANDS; the regression test
from #11/v0.5.6 catches any future drift.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>