Azure API Management serves as the security perimeter, implementing: OAuth 2.0/PKCE authentication flows per MCP specification Session key encryption/decryption for secure API access Request ...