{
  "$schema": "https://datatracker.ietf.org/doc/html/rfc8414",
  "issuer": "https://www.teosretreats.com",
  "token_endpoint": "https://www.teosretreats.com/api/auth/login",
  "token_endpoint_auth_methods_supported": ["client_secret_post"],
  "grant_types_supported": ["password"],
  "response_types_supported": ["token"],
  "response_modes_supported": ["query"],
  "service_documentation": "https://www.teosretreats.com/about/facts",
  "ui_locales_supported": ["en", "es", "ru"],
  "op_policy_uri": "https://www.teosretreats.com/llms.txt",
  "token_endpoint_description": "Administrative login endpoint. Issues a short-lived JWT bearer token (12h) for admin-only API surfaces. Public API endpoints (/api/schedule, /api/inquiries, /api/checkout/session) do not require authentication."
}