search

User authentication

Those endpoints allow to authenticate the User or Master based on passphrase.

circle-info

These two endpoints are wide open and do not need any authorization data.

triangle-exclamation

The authentication procedure requires a valid RTC to be set.

hashtag
Phase 1 - challenge

hashtag
Get a challenge

GET https://my.ence.do/api/auth/token

Get a challenge data to perform user authentication based on it.

hashtag
Response status code

{
  "exp": 1647871504,
  "spk": "0kRmCliUQvRwfxi7T1ek2GtbSERzMFRGLeyO1r1tEXo=",
  "jti": "1IU4Yont+/lZxh+HpgBwsc2sOWybfByFI+n8vAxWQzU=",
  "lbl": "My device",
  "eid": "ff6/rpgprw6OjcPbedIB5LbsxjZqmnf43J1zeK1x82I="
}

hashtag
Response data for successful operation

Name
Type
Description

exp

Number

Expire timestamp

eid

String

EncedoID, public key of the instance.

jti

String

Token id

lbl

String

Label, username

spk

String

Session public key

hashtag
Phase 2 - response

hashtag
Post authentication data

POST https://my.ence.do/api/auth/token

Post-authentication data is signed based on the user's passphrase.

hashtag
Headers

Name
Type
Description

Content-Type*

String

application/json

hashtag
Request Body

Name
Type
Description

auth*

String

Authentication data to be validated by the device

hashtag
Response status code

hashtag
Response data for successful operation

Name
Type
Description

token

String

JWT access token (refered as JWT_TOKEN)

hashtag
Log entries

Event
Result
Source

LOG_TYPE_AUTH_SUCCESS_INTERNAL

LOG_RESULT_OK

200

PreviousInitialisationNextExternal authenticator

Last updated