Lock down a Fastify API with token auth

Adds Auth0 JWT validation to Fastify endpoints. Checks bearer tokens, enforces scopes, and gates routes without custom auth code.

Best for: Engineers building a backend API that needs to trust only requests from your own frontend or app.