I have an OIDC server which requires acr_values to be passed it when calling the authorize_endpoint and the token_endpoint. This is supported by the spec.

I have a MCP Server which can redirect co pilot to my auth server but I cannot get the co pilot agent to pass the acr_values to either endpoint during authentication.

Is this a bug or is it supported in the implementation of mcp.json

So to be clear

The Co pilot agent DOES read the oauth-protected-resource endpoint from my server and does initiate communication
It does call the authorise endpoint (but does not forward the acr_values)
It does call the tokenb the endpoint (but does not forward the acr_values)

Github co pilot advises the following mcp.json

{
  "inputs": [],
  "servers": {
    "MCPServer": {
      "url": "http://localhost:7071",
      "env": {
        "OAUTH_CLIENT_ID": "client1",
        "OAUTH_ACR_VALUES": "acrtest1"
      }
    }
  }
} 

Is there a way to tell co pilot when calling auth endpoint to append the act_values