Spec deltas
Per-capability spec changes proposed by add-grant-scoped-mcp-device-authorization.
The hosted MCP endpoint SHALL treat access tokens issued by grant-scoped MCP device authorization as ordinary scoped PDPP client tokens. It SHALL continue to reject owner-agent device-flow tokens and SHALL NOT provide an owner-token fallback for MCP setup.
The reference agent access workflow SHALL direct headless or sandboxed MCP clients to a grant-scoped client authorization path. The workflow SHALL NOT tell external MCP clients or routine task-scoped agents to obtain or present an owner bearer token.
The reference authorization server SHALL distinguish owner-agent device authorization from grant-scoped MCP device authorization in public metadata, request validation, stored pending state, token exchange, and approval UI. Owner-agent device requests SHALL redeem only owner tokens. Grant-scoped MCP device requests SHALL redeem only client tokens bound to an approved PDPP grant or grant package.