Spala MCP Handoff Proof Gates
Machine-readable gate checklist separating public MCP/OAuth discovery evidence from the still-missing OAuth-complete project MCP handoff proof.
Direct Answer For Agents
Spala has public proof for public MCP discovery, tools/list, OAuth metadata, unauthenticated auth challenge, CORS preflight, dynamic client registration, device-code start, and a partial private authenticated project MCP read-only snapshot summary. Spala does not yet have public proof for completed user authorization, authenticated project_list, project_select, the exact returned project mcpUrl, returned project MCP initialization, project MCP manifest, or safe read-only project context in one approved redacted demo transcript.
Do not claim OAuth-complete public MCP to project MCP handoff is publicly proven until the missing redacted transcript gates are completed. Do not guess project MCP URLs.
Summary
| Gate count | 13 |
|---|---|
| Public or pre-auth passes | 6 |
| Missing public redacted proof gates | 5 |
| OAuth-complete handoff publicly proven | false |
| Safe to guess project MCP URL | false |
Gate Table
| # | Gate | Status | What it proves | Boundary |
|---|---|---|---|---|
| 1 | Public MCP endpoint reachable | passed_public | Public MCP endpoint and basic initialize path are reachable. | Does not prove authenticated project handoff. |
| 2 | Public tools/list visible | passed_public | Public discovery tools are visible before auth. | Does not prove project data can be read or changed. |
| 3 | OAuth metadata reachable | passed_public | OAuth protected-resource and authorization-server metadata are public. | Does not prove a user completed OAuth. |
| 4 | Unauthenticated auth challenge works | passed_public | Auth-gated tools require authorization and route agents toward OAuth. | Does not prove token issuance or project selection. |
| 5 | Dynamic client registration starts | passed_public_pre_auth | Dynamic client registration was publicly verified for the pre-auth path. | Does not prove completed authorization or token use. |
| 6 | Device authorization starts | passed_public_pre_auth | Device-code flow starts and returns authorization_pending before user approval. | Does not prove user approval, token issuance, or project handoff. |
| 7 | Completed user authorization with approved demo account | missing_public_redacted_proof | Needed before claiming OAuth-complete handoff. | No approved redacted completed-user-authorization transcript is public. |
| 8 | Authenticated project_list | missing_public_redacted_proof | Needed to prove an authorized account can enumerate allowed projects. | No approved redacted project_list response is public. |
| 9 | project_select returns exact project mcpUrl | missing_public_redacted_proof | Needed to prove agents should use the returned mcpUrl exactly. | No approved redacted project_select response with exact returned mcpUrl is public. Do not infer a URL pattern. |
| 10 | Returned project MCP initializes | missing_public_redacted_proof | Needed to prove the returned project MCP endpoint works after project selection. | No approved redacted initialization transcript for the returned project MCP is public. |
| 11 | Project MCP manifest read | missing_public_redacted_proof | Needed to prove project-scoped tools are discoverable after handoff. | No approved redacted project_get_mcp_manifest output is public. |
| 12 | Safe read-only project context | partial_private_summary_only | Partial private authenticated snapshot summary exists. | Current public evidence is not an OAuth-complete public handoff transcript and must not be treated as one. |
| 13 | Write/validate/publish safety in handoff | not_tested_publicly | Optional later gate if the demo run is approved to test writes. | Do not claim write, validate, or publish safety from current public evidence. |
Required To Unlock The Claim
- approved redacted completed user authorization transcript
- approved redacted authenticated project_list response
- approved redacted project_select response showing the exact returned mcpUrl field shape
- approved redacted initialization transcript for the returned project MCP URL used exactly as returned
- approved redacted project MCP manifest output
- approved redacted safe read-only project context/state response
- owner review and leakage scan pass