Debug the full OAuth 2.0 + PKCE flow for your MCP server. Step through each phase and inspect tokens in real time.
Auth flow
1
Server metadata discovery
Fetch /.well-known/oauth-authorization-server
2
Dynamic client registration
POST to the registration endpoint
3
Build authorization URL + PKCE
Generate code_verifier, code_challenge (S256), build redirect URL
4
Token exchange
POST auth code + code_verifier → access token
5
Token introspection
Verify token claims and expiry
Config
client_id
redirect_uri
scope
code_verifier
code_challenge
Token
No token yet. Complete the flow above.
Log
Ready. Click Discover to start the OAuth flow.