Challenge
This endpoint initiates the authentication process by generating a random challenge
string that must be signed by the user’s private key. The signed challenge should
then be submitted to the /v1/auth/verify endpoint to complete authentication.
The challenge-response authentication mechanism ensures that users prove ownership of their public key.
Authentication Flow
- Client calls this endpoint with their public key
- Server generates and returns a random challenge
- Client signs the challenge with their private key
- Client submits the signature to
/v1/auth/verify - Server verifies the signature and issues a JWT token
Challenge Lifecycle
- Challenges are valid forever and are used to identify the user
- Each challenge can only be used once
Arguments
public_key- The user’s public key
Returns
200 OKwith the challenge string and request ID400 Bad Requestif the request is malformed or the public key is invalid500 Internal Server Errorif the challenge generation fails
Body
Public key for which to generate an authentication challenge
Request body for initiating authentication challenge.
This request starts the authentication flow by requesting a challenge string that must be signed with the user's private key.
Response
Challenge generated successfully
Response containing the challenge string to be signed.
The challenge is a random 32-byte value (64 hex characters) that must be signed using the private key corresponding to the provided public key.