MCP-server: support opaque tokens #4
Description
mcp-server-security only supports JWT tokens.
It should also support opaque tokens. In the introspection call, it should (optionally) check the resource name.
NOTE: ensure mcp-authorization-server returns the correct audience in the token introspection response.