> ## Documentation Index
> Fetch the complete documentation index at: https://docs.panderra.ai/llms.txt
> Use this file to discover all available pages before exploring further.

# Register Client

> Register a new OAuth client for this tenant (DCR).



## OpenAPI

````yaml /api-reference/openapi.json post /oauth/register
openapi: 3.1.0
info:
  title: Big Panda — Public API
  description: >-
    Externe REST-API für Connector-Plugins (JTL, Shopware), n8n-Integrationen
    und Custom-Clients. Tenant-Routing über Subdomain, Auth über Bearer-Token.
  version: 0.1.0
servers:
  - url: https://{tenant}.app.big-panda.ai
    description: Big Panda — Tenant-Subdomain. Ersetze {tenant} durch deinen Tenant-Slug.
    variables:
      tenant:
        default: demo
        description: Dein Big-Panda-Tenant-Slug (z.B. 'acme').
security:
  - BearerAuth: []
tags:
  - name: Products
  - name: Knowledge Entries
  - name: Categories
  - name: Sites
  - name: Search
  - name: OAuth
    description: >-
      OAuth-2.1-Authentifizierung — Discovery, Dynamic Client Registration,
      Authorize, Token, Revoke.
paths:
  /oauth/register:
    post:
      tags:
        - OAuth
      summary: Register Client
      description: Register a new OAuth client for this tenant (DCR).
      operationId: register_client_oauth_register_post
      parameters: []
      requestBody:
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/ClientRegistrationRequest'
        required: true
      responses:
        '201':
          description: Successful Response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/ClientRegistrationResponse'
        '422':
          description: Validation Error
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/HTTPValidationError'
components:
  schemas:
    ClientRegistrationRequest:
      properties:
        client_name:
          type: string
          maxLength: 200
          minLength: 1
          title: Client Name
        redirect_uris:
          items:
            type: string
          type: array
          minItems: 1
          title: Redirect Uris
        grant_types:
          anyOf:
            - items:
                type: string
              type: array
            - type: 'null'
          title: Grant Types
        response_types:
          anyOf:
            - items:
                type: string
              type: array
            - type: 'null'
          title: Response Types
        token_endpoint_auth_method:
          anyOf:
            - type: string
            - type: 'null'
          title: Token Endpoint Auth Method
        scope:
          anyOf:
            - type: string
            - type: 'null'
          title: Scope
      type: object
      required:
        - client_name
        - redirect_uris
      title: ClientRegistrationRequest
      description: |-
        DCR request body (RFC 7591 §2).

        Only the fields we care about are validated. Extra keys are
        ignored by Pydantic default so future MCP-spec additions don't
        break existing clients.
    ClientRegistrationResponse:
      properties:
        client_id:
          type: string
          title: Client Id
        client_secret:
          type: string
          title: Client Secret
        client_id_issued_at:
          type: integer
          title: Client Id Issued At
        client_secret_expires_at:
          type: integer
          title: Client Secret Expires At
          default: 0
        client_name:
          type: string
          title: Client Name
        redirect_uris:
          items:
            type: string
          type: array
          title: Redirect Uris
        grant_types:
          items:
            type: string
          type: array
          title: Grant Types
        response_types:
          items:
            type: string
          type: array
          title: Response Types
        token_endpoint_auth_method:
          type: string
          title: Token Endpoint Auth Method
        scope:
          type: string
          title: Scope
      type: object
      required:
        - client_id
        - client_secret
        - client_id_issued_at
        - client_name
        - redirect_uris
        - grant_types
        - response_types
        - token_endpoint_auth_method
        - scope
      title: ClientRegistrationResponse
      description: DCR response body (RFC 7591 §3.2).
    HTTPValidationError:
      properties:
        detail:
          items:
            $ref: '#/components/schemas/ValidationError'
          type: array
          title: Detail
      type: object
      title: HTTPValidationError
    ValidationError:
      properties:
        loc:
          items:
            anyOf:
              - type: string
              - type: integer
          type: array
          title: Location
        msg:
          type: string
          title: Message
        type:
          type: string
          title: Error Type
      type: object
      required:
        - loc
        - msg
        - type
      title: ValidationError
  securitySchemes:
    BearerAuth:
      type: http
      scheme: bearer
      description: >-
        API-Token aus dem Big-Panda-Admin-UI unter Einstellungen → API-Keys.
        Header: `Authorization: Bearer <token>`.

````