naftiko: 1.0.0-alpha2 info: label: Spring Authorization Server API — Keys description: 'Spring Authorization Server API — Keys. 1 operations. Lead operation: JSON Web Key Set. Self-contained Naftiko capability covering one Spring Security business surface.' tags: - Spring Security - Keys created: '2026-05-19' modified: '2026-05-19' binds: - namespace: env keys: SPRING_SECURITY_API_KEY: SPRING_SECURITY_API_KEY capability: consumes: - type: http namespace: spring-authorization-server-keys baseUri: http://localhost:9000 description: Spring Authorization Server API — Keys business capability. Self-contained, no shared references. resources: - name: oauth2-jwks path: /oauth2/jwks operations: - name: getjwks method: GET description: JSON Web Key Set outputRawFormat: json outputParameters: - name: result type: object value: $. authentication: type: bearer token: '{{env.SPRING_SECURITY_API_KEY}}' exposes: - type: rest namespace: spring-authorization-server-keys-rest port: 8080 description: REST adapter for Spring Authorization Server API — Keys. One Spectral-compliant resource per consumed operation, prefixed with /v1. resources: - path: /v1/oauth2/jwks name: oauth2-jwks description: REST surface for oauth2-jwks. operations: - method: GET name: getjwks description: JSON Web Key Set call: spring-authorization-server-keys.getjwks outputParameters: - type: object mapping: $. - type: mcp namespace: spring-authorization-server-keys-mcp port: 9090 transport: http description: MCP adapter for Spring Authorization Server API — Keys. One tool per consumed operation, routed inline through this capability's consumes block. tools: - name: json-web-key-set description: JSON Web Key Set hints: readOnly: true destructive: false idempotent: true call: spring-authorization-server-keys.getjwks outputParameters: - type: object mapping: $.