Registration
Those endpoints allow to register a external authenticator, like Encedo Mobile Authenticator.
Allowed users
Allowed
Required access scope
auth:ext:pair
Register a new authenticator
Phase 1 - challenge
Get registration challenge and begin the process
POST
https://my.ence.do/api/auth/ext/init
Generate a challenge to link the device with a new external authenticator.
Headers
Name | Type | Description |
---|---|---|
Authorization* | String | Bearer JWT_TOKEN |
Content-Type* | String | application/json |
Request Body
Name | Type | Description |
---|---|---|
epk* | String | Broker ephemeral public key |
Response data for successful operation
Name | Type | Description |
---|---|---|
| String | EncedoID, public key of the instance. |
| String | Registration data to proxy to the external authenticator. |
Log entries
Event | Result | Source |
---|---|---|
LOG_TYPE_FAILED_SCOPE_CHECK | LOG_RESULT_FAILED | 403 |
Phase 2 - response
Upload registration reply and validate registration
POST
https://my.ence.do/api/auth/ext/validate
Upload a registration reply data sent by an external authenticator.
Headers
Name | Type | Description |
---|---|---|
Authorization* | String | Bearer JWT_TOKEN |
Content-Type* | String | application/json |
Request Body
Name | Type | Description |
---|---|---|
pid* | String | Unique Pairing ID |
reply* | String | Reply data sent by external authenticator |
Response data for successful operation
Name | Type | Description |
---|---|---|
| String | Confirmation code |
| String | Key ID of saved authenticator public key |
Log entries
Event | Result | Source |
---|---|---|
LOG_TYPE_FAILED_SCOPE_CHECK | LOG_RESULT_FAILED | 403 |
LOG_TYPE_AUTH_PAIRED_EXTERNAL | LOG_RESULT_OK | 200 |
List registered authenticators
Get authentication data
POST
https://my.ence.do/api/auth/ext/mac
Get MAC data to authenticate the device on the broker site to get a list of paired authenticators.
Headers
Name | Type | Description |
---|---|---|
Authorization* | String | Bearer JWT_TOKEN |
Content-Type* | String | application/json |
Request Body
Name | Type | Description |
---|---|---|
epk* | String | Broker ephemeral public key |
Response data for successful operation
Name | Type | Description |
---|---|---|
| String | EncedoID, public key of the instance. |
| String | Authentication data |
| String | Authentication data nonce |
Log entries
Event | Result | Source |
---|---|---|
LOG_TYPE_FAILED_SCOPE_CHECK | LOG_RESULT_FAILED | 403 |
Last updated