Authentication and Authorization Router This is the routing entry point for authentication, sessions, and authorization boundaries. Use it to decide whether the issue is mainly login mechanics, object-level authorization, browser trust boundaries, or identity protocols such as OAuth/JWT/SAML before going deeper. When to Use - The target includes login, registration, password reset, 2FA, sessions, JWT, OAuth, or SSO - You suspect object authorization flaws, cross-tenant access, cross-origin reads, CSRF, or protocol misconfiguration - You need to decide whether to test authentication or authori…