# Auth.md

> Agent authentication and registration guide for SEEK (seek-re.com).

The SEEK public API (`/v1/*`) is **unauthenticated** and read-only.
No registration, API key, or OAuth flow is required for agents to consume
office and operator data.

## Endpoints

- OpenAPI spec: <https://seek-re.com/openapi.json>
- API catalog: <https://seek-re.com/.well-known/api-catalog>
- Protected-resource metadata: <https://seek-re.com/.well-known/oauth-protected-resource>
- Authorization-server metadata: <https://seek-re.com/.well-known/oauth-authorization-server>
- MCP server card: <https://seek-re.com/.well-known/mcp/server-card.json>
- Agent skills index: <https://seek-re.com/.well-known/agent-skills/index.json>
- LLM-friendly site guide: <https://seek-re.com/llms.txt>

## agent_auth

| Field | Value |
| --- | --- |
| `status` | `public-no-auth` |
| `register_uri` | <mailto:hello@seek-re.com?subject=SEEK%20Agent%20Registration> |
| `supported_identity_types` | `agent`, `organization` |
| `supported_credential_types` | _none — public API_ |
| `claim_uri` | <mailto:hello@seek-re.com?subject=SEEK%20Agent%20Claim> |
| `revocation_uri` | <mailto:hello@seek-re.com?subject=SEEK%20Agent%20Revocation> |
| `documentation` | <https://seek-re.com/auth.md> |

Higher rate limits, write access, or partner credentials are issued out-of-band
by emailing the address above. There is no automated registration endpoint at
this time.

## Rate limits

Soft rate-limited at the Cloudflare edge. Agents that respect HTTP `429`
backoff guidance will not be blocked. Expect ~60 requests/minute per IP
for the `/v1/*` namespace.

## Identifying your agent

Set a descriptive `User-Agent` header that includes a contact URL, e.g.:

```
User-Agent: MyAgent/1.0 (+https://example.com/agent-info)
```

## Contact

For partnership, write-access, or higher rate limits: <hello@seek-re.com>

## See also

- Agent skills manifest: <https://seek-re.com/.well-known/agent-skills/index.json>