There has been some discussion in this repo and in the TypeScript MCP repo regarding authentication with MCP servers.

The Python SDK includes an OAuthAuthorizationServerProvider example for implementing authentication.

What was the motivation behind introducing this? It seems that authentication could be implemented more directly—and in my opinion, more simply—using Starlette middleware. Additionally, OAuthAuthorizationServerProvider appears to assume user input as part of the flow, whereas MCP servers will often act as backend resource servers without direct user interaction.