refactor(oidc): move OIDC module to versioned API path

- Move OIDC endpoints from gatehouse_app/api/oidc.py to gatehouse_app/api/v1/oidc.py
- Register OIDC discovery endpoint directly on app instead of separate blueprint
- Update service name from authy2-backend to secuird-backend in health check

gatehouse_app/__init__.py

@@ -111,14 +111,20 @@ def setup_middleware(app):
 def register_blueprints(app):
     """Register application blueprints."""
     from gatehouse_app.api import register_api_blueprints
-    from gatehouse_app.api.oidc import oidc_bp, oidc_discovery_bp
 
     register_api_blueprints(app)
 
-    # Register OIDC discovery at root level (OIDC spec requirement: .well-known must be at root)
-    app.register_blueprint(oidc_discovery_bp)
-    # Register OIDC blueprint at /api/v1/oidc (conforms to API versioning standard)
-    app.register_blueprint(oidc_bp, url_prefix="/api/v1/oidc")
+    # Register OIDC discovery endpoint at root (OIDC spec requirement)
+    from gatehouse_app.api.v1.oidc import get_oidc_config
+    from flask import jsonify
+
+    @app.route("/.well-known/openid-configuration", methods=["GET"])
+    def oidc_discovery():
+        """OpenID Connect Discovery endpoint at root level (OIDC spec requirement)."""
+        config = get_oidc_config()
+        response = jsonify(config)
+        response.headers["Cache-Control"] = "max-age=86400"
+        return response, 200
 
 
 def register_error_handlers(app):