include auth endpoint in token cache keys

[omsmith]

Ideally the "aud" claim or something would change and thus this would've been accounted for, but oh well.

Anyway, this isn't really an issue in production, but i've had a team member run into it a few times now.

1. Have LMS configured against Auth Service A
2. Request token
3. Reconfigure LMS against Auth Service B
4. Request token
5. Notice that you were given a cached token from Auth Service A

Currently requires an app pool and/or service manager restart to clear the in-memory cache.