# IBretake API and Agent Discovery

IBretake exposes a small public discovery surface for agents, crawlers, and monitors.
Authenticated student and coordinator workflows remain session-based web app flows.

## Public endpoints

- https://ibretake.com/healthz: JSON service health probe.
- https://ibretake.com/sitemap.xml: XML sitemap for public and localized pages.
- https://ibretake.com/robots.txt: crawler policy with Content Signals.
- https://ibretake.com/llms.txt and https://ibretake.com/llms-full.txt: AI-readable content briefs.
- https://ibretake.com/.well-known/api-catalog: RFC 9727 API catalog.
- https://ibretake.com/openapi.json: OpenAPI description for public discovery endpoints.
- https://ibretake.com/auth.md: agent registration and authentication guidance.

## DNS-AID

IBretake publishes DNS for AI Discovery ServiceMode SVCB records at:

- `_index._agents.ibretake.com`: public discovery index and agent skills.
- `_a2a._agents.ibretake.com`: A2A agent card entrypoint.
- `_mcp._agents.ibretake.com`: MCP server card entrypoint.

DNS-AID validation requires DNSSEC on the public zone. If a resolver returns
`AD=false`, the DNS records exist but the Cloudflare zone and registrar DS chain
are not yet fully signed and validated.

## Authentication

IBretake does not currently issue self-service OAuth tokens to autonomous agents.
The OAuth discovery documents describe the protected resource and registration path
so agents can discover the current authentication boundary without scraping pages.

## Contact

For agent access or integration review, contact support@ibretake.com.