From 7eb274ac347b4765e326f92b0237da28b3d1b886 Mon Sep 17 00:00:00 2001
From: MayaTheShy <MayaTheShy@gmail.com>
Date: Sun, 9 Nov 2025 02:50:40 -0500
Subject: [PATCH] docs: update known limitations to include OAuth
 authentication status and clarify entity update constraints

---
 README.md | 24 ++++++++++++++++++------
 1 file changed, 18 insertions(+), 6 deletions(-)

diff --git a/README.md b/README.md
index 809d0c9..25f0d9b 100644
--- a/README.md
+++ b/README.md
@@ -233,12 +233,24 @@ This allows you to:
 
 ## Known Limitations
 
-1. **Entity types**: Only Box, Sphere, Model supported. Need Text, Image, Light, Zone, etc.
-2. **Model colors**: Entity colors are parsed but not yet applied to materials
-3. **No texture support**: Models render without textures, entity.textureUrl parsing ready
-4. **Limited entity updates**: Entities created but updates/deletions need work
-5. **UDP only**: WebSocket transport not implemented
-6. **Single user**: No avatar or multi-user support yet
+1. **OAuth Authentication**: Web-based OAuth flow not yet implemented (see OVERTE_AUTH.md)
+   - Anonymous connection works perfectly
+   - Assignment client discovery limited without authentication
+   - Domain server used as fallback for entity queries
+   
+2. **Entity types**: Only Box, Sphere, Model supported. Need Text, Image, Light, Zone, etc.
+
+3. **Model colors**: Entity colors are parsed but not yet applied to materials
+
+4. **No texture support**: Models render without textures, entity.textureUrl parsing ready
+
+5. **Limited entity updates**: Entities created but real-time updates/deletions need work
+
+6. **UDP only**: All communication via UDP (HTTP used for diagnostics only)
+
+7. **Single user**: No avatar or multi-user support yet
+
+8. **NAT/Firewall**: External connections require port forwarding for self-hosted domains
 
 ## Roadmap