Create an application for interacting with new OAuth provider.
Any OAuth token received by MB that begins with meba_ should be checked against the new MeB OAuth provider.
To check a token against the MeB OAuth provider, call the https://test.metabrainz.org/new-oauth2/introspect endpoint with client_id, client_secret (from first step) and received OAuth2 token as form data in body.
The received response is 403 for an invalid/expired token.
If the received response is 200, then check the scope field in the JSON response and see if the resource the token is trying to access has the requested scope.