package auth
Get desktop application:
View/edit binary Protocol Buffers messages
service AuthService
auth.proto:68/ This service is responsible for issuing auth tokens to clients for API access.
rpc GenerateAuthChallenge (, )
auth.proto:70/ Returns a challenge, client is expected to sign this challenge with an appropriate keypair in order to obtain access tokens.
message
auth.proto:16Role role = 1
/ Role the client is attempting to generate tokens for.
bytes pubkey = 2
/ Client's 32 byte pubkey.
message
auth.proto:24string challenge = 1
rpc GenerateAuthTokens (, )
auth.proto:73/ Provides the client with the initial pair of auth tokens for API access.
message
auth.proto:28string challenge = 1
/ The pre-signed challenge.
bytes client_pubkey = 2
/ The signing keypair's corresponding 32 byte pubkey.
bytes signed_challenge = 3
/ The 64 byte signature of the challenge signed by the client's private key. The private key must correspond to the pubkey passed in the [GenerateAuthChallenge] method. The client is expected to sign the challenge token prepended with their pubkey. For example sign(pubkey, challenge).
message
auth.proto:49optional access_token = 1
/ The token granting access to resources.
optional refresh_token = 2
/ The token used to refresh the access_token. This has a longer TTL than the access_token.
rpc RefreshAccessToken (, )
auth.proto:76/ Call this method with a non-expired refresh token to obtain a new access token.
message
auth.proto:57string refresh_token = 1
/ Non-expired refresh token obtained from the [GenerateAuthTokens] method.
message
auth.proto:62optional access_token = 1
/ Fresh access_token.
enum Role
auth.proto:9Used in:
RELAYER = 0
SEARCHER = 1
VALIDATOR = 2
SHREDSTREAM_SUBSCRIBER = 3
message
auth.proto:41Used in: ,
string value = 1
/ The token.
optional expires_at_utc = 2
/ When the token will expire.