As per title, do we need the #authenticator since the browser/client are doing this now
Yes, maybe. Maybe not. Perhaps keep it just in case a CLI version gets going soon…
I think it can make sense to keep it. Even though it’s bundled with the browser, the authenticator can be considered to be a separate component.