looking at some real world use cases, I think the oauth object is a couple of fields short of being able to describe lots of real OAuth servers we see in the wild. three fields (clientId, scopes, redirectUri) covers the happy path — DCR + PKCE + working RFC 8414 discovery — but falls over on confidential clients, CIMD, broken discovery, and "register your own client."

I've written up the publisher-side half of this as a separate SEP — SEP-2742 (the menu shape that a Server Card / server.json would carry, what auth methods does a server support). Trying to keep the layering clean: server.json = the menu, mcp.json = the choice. The two PRs are meant to be read together.

The short version of what I think is missing here:

1. Confidential clients — there's no field for a client secret, private key, or mTLS cert. Server requires client_secret / private_key_jwt / tls_client_auth? Can't be configured. I'm pretty sure we support this in ext-auth.
2. CIMD — a clientId that's an https:// URL is ambiguous. Is it a Client ID Metadata Document or just a static ID that looks like a URL? The connect behavior is totally different and you can't tell from the JSON.
3. Broken discovery — the spec assumes .well-known/oauth-authorization-server works. A surprising number of real ASes don't publish it (Snowflake's Custom OAuth being a well-documented one). No escape hatch.
4. Auth posture — can't tell whether the server wants auth before initialize, accepts anon and 401s lazily (e.g., partial auth), or doesn't care.
5. $schema — no version field. Cheap to add now, very annoying to retrofit.
6. The serverCard ref open question — already flagged in the SEP, and I think it's the load-bearing one. Got a concrete proposal — happy to sketch it inline or in a follow-up.