Initiate Authentication
To use initiateAuthentication
method via the API you first need to make sure you have the values for your request headers set up by following the Unauthenticated Requests setup guide.
Once you have your values for x-scope-id
and x-encrypted-key
setup. You can now initiate a user authentication.
HTTP Method: POST
Headers:
X-Scope-Id: A UUID string representing the application scope.
X-Encrypted-Key: A string containing the encrypted key for secure communication.
X-Encrypted-User: The user input encrypted using the encryption key
Body:
regenerate_seed: A boolean indicating whether to regenerate the seed for the session.
encrypted_user: A string representing the encrypted user information.
The
encrypted_user
is generated by RSA encrypting the user parameters with the non-encrypted AES key you generated when following Unauthenticated Requests, and by using the followingaesEncrypt
function.
Now we can encrypt our user parameters and pass that value as our encrypted_user
in our API request.
Response Spec
challenge_id: A unique identifier for the authentication challenge.
encrypted_request_challenge: A string representing the encrypted challenge that the user must respond to.
Request Example
Response Example
Last updated