OAuth-secured remote MCP server. Connect an MCP-capable client to /mcp (Streamable HTTP) or /sse (legacy).
/mcp
/sse
OAuth (DCR + token issuance): /authorize, /oauth/token, /oauth/register. Identity is delegated to Cloudflare Access (SaaS / OIDC).
/authorize
/oauth/token
/oauth/register