naftiko: 1.0.0-alpha2
info:
  label: Auth0 API — OAuth Token
  description: 'Auth0 API — OAuth Token. 1 operations. Lead operation: Auth0 Authenticates a user using a verification code,
    verifies multi-factor authentication (MFA) using a one-time password (OTP), out-of-band (OOB) challenge, or a recovery
    code, or exchanges an Authorization Code for a Token. Self-contained Naftiko capability covering one Auth0 business surface.'
  tags:
  - Auth0
  - OAuth Token
  created: '2026-05-19'
  modified: '2026-05-19'
binds:
- namespace: env
  keys:
    AUTH0_API_KEY: AUTH0_API_KEY
capability:
  consumes:
  - type: http
    namespace: auth0-oauth-token
    baseUri: ''
    description: Auth0 API — OAuth Token business capability. Self-contained, no shared references.
    resources:
    - name: oauth-token
      path: /oauth/token
      operations:
      - name: oauthtoken
        method: POST
        description: Auth0 Authenticates a user using a verification code, verifies multi-factor authentication (MFA) using
          a one-time password (OTP), out-of-band (OOB) challenge, or a recovery code, or exchanges an Authorization Code for
          a Token
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: auth0-forwarded-for
          in: header
          type: string
          description: End-user IP as a string value. Set this if you want brute-force protection to work in server-side scenarios.
            For more information on how and when to use this he
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
  exposes:
  - type: rest
    namespace: auth0-oauth-token-rest
    port: 8080
    description: REST adapter for Auth0 API — OAuth Token. One Spectral-compliant resource per consumed operation, prefixed
      with /v1.
    resources:
    - path: /v1/oauth/token
      name: oauth-token
      description: REST surface for oauth-token.
      operations:
      - method: POST
        name: oauthtoken
        description: Auth0 Authenticates a user using a verification code, verifies multi-factor authentication (MFA) using
          a one-time password (OTP), out-of-band (OOB) challenge, or a recovery code, or exchanges an Authorization Code for
          a Token
        call: auth0-oauth-token.oauthtoken
        with:
          auth0-forwarded-for: rest.auth0-forwarded-for
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    namespace: auth0-oauth-token-mcp
    port: 9090
    transport: http
    description: MCP adapter for Auth0 API — OAuth Token. One tool per consumed operation, routed inline through this capability's
      consumes block.
    tools:
    - name: auth0-authenticates-user-using-verification
      description: Auth0 Authenticates a user using a verification code, verifies multi-factor authentication (MFA) using
        a one-time password (OTP), out-of-band (OOB) challenge, or a recovery code, or exchanges an Authorization Code for
        a Token
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: auth0-oauth-token.oauthtoken
      with:
        auth0-forwarded-for: tools.auth0-forwarded-for
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.