{"issuer":"https://api.particle.pro","authorization_endpoint":"https://api.particle.pro/oauth/authorize","token_endpoint":"https://api.particle.pro/oauth/token","registration_endpoint":"https://api.particle.pro/oauth/register","revocation_endpoint":"https://api.particle.pro/oauth/revoke","jwks_uri":"https://api.particle.pro/.well-known/jwks.json","scopes_supported":["mcp:read","mcp:write"],"response_types_supported":["code"],"grant_types_supported":["authorization_code","refresh_token"],"code_challenge_methods_supported":["S256"],"token_endpoint_auth_methods_supported":["none","client_secret_basic","client_secret_post"],"subject_types_supported":["public"],"client_id_metadata_document_supported":true,"service_documentation":"https://docs.particle.pro/mcp/oauth","authorization_response_iss_parameter_supported":true,"agent_auth":{"skill":"https://api.particle.pro/auth.md","register_uri":"https://api.particle.pro/oauth/register","revocation_uri":"https://api.particle.pro/oauth/revoke","authorization_endpoint":"https://api.particle.pro/oauth/authorize","token_endpoint":"https://api.particle.pro/oauth/token","identity_types_supported":["user_consent_authorization_code"],"credential_types_supported":["access_token","api_key"],"user_consent_authorization_code":{"registration_endpoint":"https://api.particle.pro/oauth/register","authorization_endpoint":"https://api.particle.pro/oauth/authorize","token_endpoint":"https://api.particle.pro/oauth/token","code_challenge_methods_supported":["S256"],"resource":"https://mcp.particle.pro","consent_uri":"https://platform.particle.pro/oauth/consent","description":"Register a client via RFC 7591 dynamic client registration (or bring a client_id metadata document URL), then run authorization_code + PKCE with resource=https://mcp.particle.pro. A human approves the connection on https://platform.particle.pro and selects a project; the issued access token is audience-bound to https://mcp.particle.pro."},"unsupported_flows":{"anonymous":"No anonymous or self-service agent credential issuance. Every credential is tied to a human-owned platform account.","device_authorization":"No device authorization grant. Headless agents use a pp_* API key minted at https://platform.particle.pro/tokens.","identity_assertion":"No ID-JAG / identity-assertion exchange. Use authorization_code + PKCE (interactive) or a dashboard-issued pp_* API key (headless)."},"events_supported":[]}}