Registration
Those endpoints allow to register a external authenticator, like Encedo Mobile Authenticator.
Allowed users
Allowed
Required access scope
auth:ext:pair
Register a new authenticator
Phase 1 - challenge
Get registration challenge and begin the process
POST https://my.ence.do/api/auth/ext/init
Generate a challenge to link the device with a new external authenticator.
Headers
Authorization*
String
Bearer JWT_TOKEN
Content-Type*
String
application/json
Request Body
epk*
String
Broker ephemeral public key
Response data for successful operation
eid
String
EncedoID, public key of the instance.
request
String
Registration data to proxy to the external authenticator.
Log entries
LOG_TYPE_FAILED_SCOPE_CHECK
LOG_RESULT_FAILED
403
Phase 2 - response
Upload registration reply and validate registration
POST https://my.ence.do/api/auth/ext/validate
Upload a registration reply data sent by an external authenticator.
Headers
Authorization*
String
Bearer JWT_TOKEN
Content-Type*
String
application/json
Request Body
pid*
String
Unique Pairing ID
reply*
String
Reply data sent by external authenticator
Response data for successful operation
code
String
Confirmation code
kid
String
Key ID of saved authenticator public key
Log entries
LOG_TYPE_FAILED_SCOPE_CHECK
LOG_RESULT_FAILED
403
LOG_TYPE_AUTH_PAIRED_EXTERNAL
LOG_RESULT_OK
200
List registered authenticators
Get authentication data
POST https://my.ence.do/api/auth/ext/mac
Get MAC data to authenticate the device on the broker site to get a list of paired authenticators.
Headers
Authorization*
String
Bearer JWT_TOKEN
Content-Type*
String
application/json
Request Body
epk*
String
Broker ephemeral public key
Response data for successful operation
eid
String
EncedoID, public key of the instance.
mac
String
Authentication data
nonce
String
Authentication data nonce
Log entries
LOG_TYPE_FAILED_SCOPE_CHECK
LOG_RESULT_FAILED
403
Last updated