# auth.md

> Agent registration and authentication guide for trinitydentalarts.com

## Overview

Trinity Dental Arts is a dental implant practice website. Most content is publicly available.
Agents may read all public pages without authentication.

## Public APIs (No Authentication Required)

| Endpoint | Type | Description |
|----------|------|-------------|
| `/llms.txt` | `text/plain` | Full site index for LLMs and AI agents |
| `/.well-known/agent-catalog` | `application/json` | RFC 8288 agent resource catalog |
| `/.well-known/api-catalog` | `application/linkset+json` | RFC 9727 API catalog |
| `/markdown` | `text/markdown` | Homepage markdown (send `Accept: text/markdown`) |
| `/sitemap.xml` | `application/xml` | XML sitemap |
| `/.well-known/security.txt` | `text/plain` | Security contact information |

## OAuth Protected Resource Metadata

See [`/.well-known/oauth-protected-resource`](/.well-known/oauth-protected-resource) for the full
RFC 9728 metadata document.

- **Resource:** `https://trinitydentalarts.com`
- **Authorization Server:** `https://auth.base44.com`
- **Bearer method:** `header` (`Authorization: Bearer <token>`)
- **Scopes:** `read:content`, `read:blog`, `read:faq`, `read:services`

## Agent Identity

Agents interacting with this site should identify themselves via a descriptive `User-Agent` header.
Reputable crawlers are explicitly allowed in [`/robots.txt`](/robots.txt).

## Contact

For questions about agent access or integration:
- **Email:** See [`/.well-known/security.txt`](/.well-known/security.txt)
- **Contact form:** [/contact-us](/contact-us)
