Authentication
Those endpoints allow to authenticate based by External Authenticator.
These two endpoints are wide open and do not need any authorization data.
Phase 1 - challenge
Get a challenge
POST https://my.ence.do/api/auth/ext/request
Get an authentication request data to challenge the external authenticator.
Headers
| Name | Type | Description |
|---|---|---|
Content-Type* | String | application/json |
Request Body
| Name | Type | Description |
|---|---|---|
epk* | String | Broker ephemeral public key |
scope* | String | Requested access scope |
exp* | Number | Requested lifetime of the token |
Response data for successful operation
| Name | Type | Description |
|---|---|---|
| String | Authentication request |
| String | Broker ephemeral public key |
Phase 2 - response
Post authentication data
POST https://my.ence.do/api/auth/ext/token
Post authentication data signed by an external authenticator.
Headers
| Name | Type | Description |
|---|---|---|
Content-Type* | String | application/json |
Request Body
| Name | Type | Description |
|---|---|---|
authreply* | String | Authentication data to be validated by the device |
Response data for successful operation
| Name | Type | Description |
|---|---|---|
| String | JWT access token (refered as JWT_TOKEN) |
Log entries
| Event | Result | Source |
|---|---|---|
LOG_TYPE_AUTH_SUCCESS_EXTERNAL | LOG_RESULT_OK | 200 |
Last updated