Authentication provider — either a full OAuth server or a token verifier.
OAuthServerProvider: Full OAuth 2.1 flow with authorization,
token exchange, client registration, and token revocation.
Enables mcpAuthRouter() for /authorize, /token, etc.
TokenVerifier: Token-only verification for custom auth.
Bearer tokens are validated but no OAuth endpoints are mounted.
Authentication provider — either a full OAuth server or a token verifier.
OAuthServerProvider: Full OAuth 2.1 flow with authorization, token exchange, client registration, and token revocation. EnablesmcpAuthRouter()for/authorize,/token, etc.TokenVerifier: Token-only verification for custom auth. Bearer tokens are validated but no OAuth endpoints are mounted.Use isFullOAuthProvider to discriminate at runtime.