1 files changed, 27 insertions, 48 deletions
diff --git a/site/public/register-docs/index.html b/site/public/register-docs/index.html
index e3170f9..9a9b0c0 100644
--- a/site/public/register-docs/index.html
+++ b/site/public/register-docs/index.html
@@ -75,12 +75,6 @@
                </div>
                
                
-                <div class="toc-item-child">
-                    <a class="subtext" href="https://gradecoin.xyz/register-docs/#gradecoin-side"><small>- Gradecoin Side</small></a>
-                </div>
-                
-                
-                
            </div>
        </div>
        
@@ -89,53 +83,38 @@
        <div class="content text">
            
 <div class="heading-text">Register Documentation</div>
-<p>POST request to /register endpoint
+<p>POST request to /register endpoint</p>
-Lets a [<code>User</code>] (=student) to authenticate themselves to the system
+<p>Lets a user to authenticate themselves to the system.
-This <code>request</code> can be rejected if the payload is malformed (=not authenticated properly) or if
+Only people who are enrolled to the class can open Gradecoin accounts.
-the [<code>AuthRequest.user_id</code>] of the <code>request</code> is not in the list of users that can hold a Gradecoin account</p>
+This is enforced with your Student ID and a one time password you will receive.</p>
 <h1 id="authentication-process">Authentication Process</h1>
 <ul>
-<li>
+<li>Gradecoin's Public Key (<code>gradecoin_public_key</code>) is listed on our Moodle page.</li>
-<p>Gradecoin's Public Key (<code>gradecoin_public_key</code>) is listed on moodle.</p>
+<li>You pick a short temporary key (<code>k_temp</code>)</li>
-</li>
+<li>Create a JSON object (<code>auth_plaintext</code>) with your <code>metu_id</code> and <code>public key</code> in base64 (PEM) format (<code>S_PK</code>) <a href="https://tls.mbed.org/kb/cryptography/asn1-key-structures-in-der-and-pem">reference</a></li>
-<li>
-<p>Gradecoin's Private Key (<code>gradecoin_private_key</code>) is loaded here</p>
-</li>
-<li>
-<p>Student picks a short temporary key (<code>k_temp</code>)</p>
-</li>
-<li>
-<p>Creates a JSON object (<code>auth_plaintext</code>) with their <code>metu_id</code> and <code>public key</code> in base64 (PEM) format (<code>S_PK</code>):
-{
-student_id: &quot;e12345&quot;,
-passwd: &quot;15 char secret&quot;
-public_key: &quot;---BEGIN PUBLIC KEY...&quot;
-}</p>
-</li>
-<li>
-<p>Encrypts the serialized string of <code>auth_plaintext</code> with 128 bit block AES in CBC mode with Pkcs7 padding using the temporary key (<code>k_temp</code>), the result is <code>auth_ciphertext</code> TODO should this be base64'd?</p>
-</li>
-<li>
-<p>The temporary key student has picked <code>k_temp</code> is encrypted using RSA with OAEP padding scheme
-using sha256 with <code>gradecoin_public_key</code> (TODO base64? same as above), giving us <code>key_ciphertext</code></p>
-</li>
-<li>
-<p>The payload JSON object (<code>auth_request</code>) can be JSON serialized now:
-{
-c: &quot;auth_ciphertext&quot;
-key: &quot;key_ciphertext&quot;
-}</p>
-</li>
 </ul>
-<h2 id="gradecoin-side">Gradecoin Side</h2>
+<pre style="background-color:#ffffff;">
+<code class="language-json" data-lang="json"><span style="color:#545052;">{
+    &quot;</span><span style="color:#009854;">student_id</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">e12345</span><span style="color:#545052;">&quot;,
+    &quot;</span><span style="color:#009854;">passwd</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">15 char secret</span><span style="color:#545052;">&quot;,
+    &quot;</span><span style="color:#009854;">public_key</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">---BEGIN PUBLIC KEY...</span><span style="color:#545052;">&quot;
+}
+</span></code></pre>
 <ul>
-<li>Upon receiving, we first RSA decrypt with OAEP padding scheme using SHA256 with <code>gradecoin_private_key</code> as the key and auth_request.key <code>key</code> as the ciphertext, receiving <code>temp_key</code> (this is the temporary key chosen by stu</li>
+<li>Pick a random IV.</li>
-<li>With <code>temp_key</code>, we can AES 128 Cbc Pkcs7 decrypt the <code>auth_request.c</code>, giving us
+<li>Encrypt the serialized string of <code>auth_plaintext</code> with 128 bit block AES in CBC mode with Pkcs7 padding using the temporary key (<code>k_temp</code>), the result is <code>auth_ciphertext</code>. Encode this with base64.</li>
-auth_plaintext</li>
+<li>The temporary key you have picked <code>k_temp</code> is encrypted using RSA with OAEP padding scheme
-<li>The <code>auth_plaintext</code> String can be deserialized to [<code>AuthRequest</code>]</li>
+using SHA-256 with <code>gradecoin_public_key</code>, giving us <code>key_ciphertext</code>. Encode this with base 64.</li>
-<li>We then verify the payload and calculate the User fingerprint</li>
+<li>The payload JSON object (<code>auth_request</code>) can be serialized now:</li>
-<li>Finally, create the new [<code>User</code>] object, insert to users HashMap <code>&lt;fingerprint, User&gt;</code></li>
 </ul>
+<pre style="background-color:#ffffff;">
+<code class="language-json" data-lang="json"><span style="color:#545052;">{
+    &quot;</span><span style="color:#009854;">c</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">auth_ciphertext</span><span style="color:#545052;">&quot;,
+    &quot;</span><span style="color:#009854;">iv</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">hexadecimal</span><span style="color:#545052;">&quot;,
+    &quot;</span><span style="color:#009854;">key</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">key_ciphertext</span><span style="color:#545052;">&quot;
+}
+</span></code></pre>
+<p>If your authentication process was valid, you will be given access and your public key fingerprint that is your address.</p>
        </div>