Documentation Index
Fetch the complete documentation index at: https://docs.vidjutsu.ai/llms.txt
Use this file to discover all available pages before exploring further.
VidJutsu Agent Auth (auth.md)
This document is the canonical, agent-readable manifest for registering with the VidJutsu API. It follows the auth.md protocol so any agent that speaks auth.md can self-onboard without a human in the loop. VidJutsu implements the User-Claimed flow from auth.md (flow reference): the agent and the user run the entire OTP ceremony directly with VidJutsu — no agent provider participates in the handshake. This is the simplest, lowest-friction path and works for any agent regardless of which model or runtime is hosting it.Resource
- Resource URL:
https://api.vidjutsu.ai - Authorization server:
https://api.vidjutsu.ai(we issue our own bearer keys) - Manifest URL:
https://docs.vidjutsu.ai/auth.md
Discovery
Two protocol-mandated.well-known endpoints describe the auth surface.
Step 1a — Protected Resource Metadata
Step 1b — Authorization Server Metadata
agent_auth block specific to auth.md:
Identity types
Two entrypoints, both run end-to-end by the agent and the user — no agent-provider participation required.| Flow | When to use | Credential at signup? |
|---|---|---|
| anonymous | The agent wants a usable key immediately and the user will verify their email later. | Yes (pre-claim scopes). |
| verified_email | The agent already has the user’s email and wants to gate the credential behind OTP verification. | No — only a claim_token. |
claim_token + OTP for a fully-scoped, freshly-minted API key.
1. anonymous
Immediate API key with pre-claim scopes (api.read). The agent can call read-only endpoints right away, and the returned claim_token can be redeemed later to upgrade to a fully-scoped key once the user verifies an email.
claim_token.
2. verified_email
The agent asserts an email on behalf of the principal. VidJutsu emails a 6-digit OTP to that address and returns aclaim_token. No credential is issued at this step — the agent must complete the OTP via claim/complete to receive the key.
Claim flow
Run the same two-call ceremony to finish either flow.1. Initiate claim (anonymous only — verified_email already kicks off OTP)
2. Complete claim (submit OTP)
Key rotation on claim. For anonymous registrations, the pre-claimvj_anon_*key returned at signup is invalidated server-side as soon as the claim succeeds. The freshly-returnedvj_live_*key is the only valid credential going forward — agents MUST swap to the new value. This is a hygiene measure consistent with the auth.md spec’s guidance on User-Claimed credential lifecycles.
Using the credential
Send it as a standard bearer token on every authenticated request:HTTP 402 Payment Required plus WWW-Authenticate: Payment when the balance is exhausted. See credits-and-billing in the Guides tab for the credit + top-up surface.
Revocation
The protocol reserves a logout-JWT push endpoint for future provider-driven revocation:The user-claimed flow has no provider in the loop, so this endpoint is a no-op receiver today. It is kept for protocol surface-area.
Errors
All errors followapplication/problem+json (RFC 7807). Notable cases:
400 Bad Request— unsupportedtypeorassertion_type, missing fields.404 Not Found— claim_token unknown or expired.401 Unauthorized— invalid or expired OTP on claim/complete.402 Payment Required— returned on metered API calls after successful registration when the credit balance is empty.
Notes on this manifest
- This document is served raw at
https://docs.vidjutsu.ai/auth.mdso any auth.md-aware agent can fetch and parse it without HTML scraping. - Spec source: see
Agenttag in the API Reference for the machine-readable OpenAPI version of the same endpoints. - The
.well-knowndiscovery routes are hand-registered and not part of the OpenAPI spec.