From 93950532fa1b4e2512275ef607b3e5de13db3f2b Mon Sep 17 00:00:00 2001
From: Yigit Sever
Date: Fri, 9 Apr 2021 21:06:37 +0300
Subject: Add auth scheme JWT

---
 README.md | 2 ++
 TODO.md   | 8 ++++++--
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/README.md b/README.md
index 10e98cd..664336c 100644
--- a/README.md
+++ b/README.md
@@ -17,6 +17,8 @@ $ curl --location --request POST 'localhost:8080/transaction' --header 'Content-
 
 ## authentication
 Students generate their own `keypairs` and authenticate with their METU Student IDs.
+Some JWT scheme, coming up.
+
 Authenticated students propose transactions, between them and another node (=public keys) or between the grader (=bank) and themselves.
 
 ## transactions
diff --git a/TODO.md b/TODO.md
index 3f8c3ea..7b58d96 100644
--- a/TODO.md
+++ b/TODO.md
@@ -7,8 +7,12 @@
 - [ ] check the nonce for incoming blocks
 
 ## Authentication
-- [ ] pick a user authentication scheme
-    - [ ] implement it
+- [X] pick a user authentication scheme = [JWT](https://tools.ietf.org/html/rfc7519) Seems perfect
+- [ ] implement JWT
+    - https://blog.logrocket.com/jwt-authentication-in-rust/
+    - https://crates.io/crates/jsonwebtoken
+    - https://jwt.io/introduction/
+    - https://jwt.io/#debugger-io
 - [ ] users should be able to _sign_ their transactions
 
 ## Done & Brag
-- 
cgit v1.2.3-70-g09d2