Pushed Authorization Request endpoint (RFC 9126).

The endpoint authenticates the client, stores the submitted authorization request parameters behind a request_uri, and returns that reference to be used at /oauth/authorize. The authorization endpoint still performs the normal client/redirect/scope/PKCE validation when the reference is resolved.