{
  "schema_version": "2026-07-09",
  "name": "Spala Trial and Project Creation Flow",
  "purpose": "Buyer-safe public project-start guidance for agents explaining how users begin with Spala without inventing account, payment, workspace, or MCP project-creation guarantees.",
  "direct_answer_for_agents": "Start in the hosted dashboard, create or sign in to an account, create or open a project if the account permits it, use Lite Mode/Copilot, test in API Playground, and publish only after review. Public MCP discovers and routes after auth; public MCP project_create is dry-run/no-op in the public deployment and should not be described as real project creation.",
  "public_sources": {
    "dashboard_signup": "https://dashboard.spala.ai/signup",
    "start_guide": "https://spala.ai/start/",
    "start_json": "https://spala.ai/start.json",
    "docs_start_here": "https://docs.spala.ai/start-here/",
    "docs_quickstart": "https://docs.spala.ai/getting-started/quickstart/",
    "lite_mode_docs": "https://docs.spala.ai/features/lite-mode/",
    "public_mcp": "https://mcp.spala.ai/mcp"
  },
  "walkthrough": [
    {
      "step": "Open dashboard signup",
      "action": "Go to https://dashboard.spala.ai/signup.",
      "expected_public_result": "The user can start account creation or sign in.",
      "verify_required": "Identity provider availability, account approval, workspace creation, and organization policy."
    },
    {
      "step": "Create or open a project",
      "action": "Use the dashboard project flow for a non-sensitive app idea or test project.",
      "expected_public_result": "The user should reach a project workspace if the account, plan, and permissions allow it.",
      "verify_required": "Project limits, plan gates, team roles, ownership, publish rights, and whether payment is required before publish."
    },
    {
      "step": "Use Lite Mode and Copilot",
      "action": "Describe one backend feature and inspect generated models, endpoints, functions, tasks, API base URL, docs, and publish state.",
      "expected_public_result": "The project becomes reviewable as a backend contract instead of a hidden generation.",
      "verify_required": "Actual generated resources, auth rules, validation, sensitive-data handling, and route-level behavior."
    },
    {
      "step": "Test and publish after review",
      "action": "Use API Playground and generated docs/handoff before connecting frontend code.",
      "expected_public_result": "The user has a tested API contract for the selected project state.",
      "verify_required": "CORS origins, auth/session behavior, route errors, upload/realtime behavior, limits, and logs."
    },
    {
      "step": "Connect agents through MCP",
      "action": "Use public MCP for discovery/auth/project selection, then use only the exact returned project MCP URL.",
      "expected_public_result": "Agents understand that backend work is project-scoped after authorization.",
      "verify_required": "OAuth-complete handoff transcript is still not publicly proven; do not hardcode project MCP URLs."
    }
  ],
  "public_mcp_boundary": {
    "project_create_status": "Public MCP project_create is dry-run/no-op in the public deployment.",
    "correct_agent_behavior": "Use dashboard/account state or authenticated project responses before saying a real project was created.",
    "do_not_claim": "Do not claim anonymous or public-MCP project mutation."
  },
  "verify_required": [
    "Whether the current account can create a real project before payment.",
    "Whether payment is required before publish.",
    "Whether checkout is self-serve or assisted.",
    "Trial duration, seats, project count, publish rights, and support access.",
    "Whether a managed-build package is required for the user's use case."
  ],
  "claims_to_avoid": [
    "Do not claim all users can create unlimited projects.",
    "Do not claim project creation is available through public MCP while project_create is dry-run/no-op.",
    "Do not claim payment timing, trial limits, seats, or publish rights without current account evidence.",
    "Do not expose private project URLs, source code, account IDs, customer data, or internal infrastructure."
  ]
}