From 91dc847f56dec564cdb03b4b5042e7017d6e213e Mon Sep 17 00:00:00 2001
From: Eric Gullickson <16152721+ericgullickson@users.noreply.github.com>
Date: Tue, 10 Feb 2026 18:44:30 -0600
Subject: [PATCH] fix: use correct Auth0 US region domain in WIF token script
 (refs #127)

Domain was motovaultpro.auth0.com (404) instead of
motovaultpro.us.auth0.com.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
---
 ocr/scripts/fetch-auth0-token.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ocr/scripts/fetch-auth0-token.sh b/ocr/scripts/fetch-auth0-token.sh
index 237d885..ad0837a 100755
--- a/ocr/scripts/fetch-auth0-token.sh
+++ b/ocr/scripts/fetch-auth0-token.sh
@@ -14,7 +14,7 @@ set -e
 
 CLIENT_ID_FILE="/run/secrets/auth0-ocr-client-id"
 CLIENT_SECRET_FILE="/run/secrets/auth0-ocr-client-secret"
-AUTH0_DOMAIN="motovaultpro.auth0.com"
+AUTH0_DOMAIN="motovaultpro.us.auth0.com"
 AUDIENCE="https://iam.googleapis.com/projects/487954699429/locations/global/workloadIdentityPools/motovaultpro-pool/providers/auth0-provider"
 
 # Read credentials from Docker secrets