Implement SEP-835: Enhanced Authorization Flows

This is a tracking issue for implementation of [SEP-835](https://github.com/modelcontextprotocol/modelcontextprotocol/issues/835).

### Summary

This SEP significantly enhances the authorization capabilities of MCP by introducing incremental scope consent via the WWW-Authenticate header mechanism and adds support for OpenID Connect Discovery 1.0. The Python SDK needs to implement progressive authorization flows that request additional scopes as needed during a session, support for WWW-Authenticate challenge-response patterns, and OIDC discovery endpoints to enable more granular permission management while maintaining the principle of least privilege.

### Related Issues & PRs

- **Implementation PRs**: [#1324](https://github.com/modelcontextprotocol/python-sdk/pull/1324)
- **Related PRs**: [#1071](https://github.com/modelcontextprotocol/python-sdk/pull/1071), [#1061](https://github.com/modelcontextprotocol/python-sdk/pull/1061), [#991](https://github.com/modelcontextprotocol/python-sdk/pull/991)
- **Related Issues**: [#686](https://github.com/modelcontextprotocol/python-sdk/issues/686), [#1307](https://github.com/modelcontextprotocol/python-sdk/issues/1307), [#1319](https://github.com/modelcontextprotocol/python-sdk/issues/1319)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Implement SEP-835: Enhanced Authorization Flows #1536

Summary

Related Issues & PRs

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Implement SEP-835: Enhanced Authorization Flows #1536

Description

Summary

Related Issues & PRs

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions