From a56a71e3971a8d0680439b8217ddee41462fd6dc Mon Sep 17 00:00:00 2001
From: Yigit Sever
Date: Fri, 16 Apr 2021 13:56:45 +0300
Subject: Improve auth documentation

---
 site/public/register-docs/index.html | 28 ++++++++++++++++------------
 1 file changed, 16 insertions(+), 12 deletions(-)

(limited to 'site/public/register-docs/index.html')

diff --git a/site/public/register-docs/index.html b/site/public/register-docs/index.html
index fdc5237..810f4ec 100644
--- a/site/public/register-docs/index.html
+++ b/site/public/register-docs/index.html
@@ -84,38 +84,42 @@
         <div class="content text">
             
 <div class="heading-text">Register Documentation</div>
-<p>POST request to /register endpoint</p>
+<p>POST request to <code>/register</code> endpoint</p>
 <p>Lets a user to authenticate themselves to the system.
 Only people who are enrolled to the class can open Gradecoin accounts.
 This is enforced with your Student ID and a one time password you will receive.</p>
 <h1 id="authentication-process">Authentication Process</h1>
+<blockquote>
+<p>The bytes you are sending over the network are all Base64 Encoded</p>
+</blockquote>
 <ul>
-<li>Gradecoin's Public Key (<code>gradecoin_public_key</code>) is listed on our Moodle page.</li>
-<li>You pick a short temporary key (<code>k_temp</code>)</li>
-<li>Create a JSON object (<code>auth_plaintext</code>) with your <code>metu_id</code> and <code>public key</code> in base64 (PEM) format (<code>S_PK</code>) <a href="https://tls.mbed.org/kb/cryptography/asn1-key-structures-in-der-and-pem">reference</a></li>
+<li>Gradecoin's Public Key (<code>gradecoin_public_key</code>) is listed on our Moodle page. Download and load it it to your client.</li>
+<li>Create a JSON object (<code>P_AR</code>) with your <code>metu_id</code> (&quot;e&quot;+<code>6 chars</code>) and <code>public key</code> in base64 (PEM) format (<code>S_PK</code>) <a href="https://tls.mbed.org/kb/cryptography/asn1-key-structures-in-der-and-pem">reference</a></li>
 </ul>
 <pre style="background-color:#ffffff;">
 <code class="language-json" data-lang="json"><span style="color:#545052;">{
-    &quot;</span><span style="color:#009854;">student_id</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">e12345</span><span style="color:#545052;">&quot;,
+    &quot;</span><span style="color:#009854;">student_id</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">e123456</span><span style="color:#545052;">&quot;,
     &quot;</span><span style="color:#009854;">passwd</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">15 char secret</span><span style="color:#545052;">&quot;,
     &quot;</span><span style="color:#009854;">public_key</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">---BEGIN PUBLIC KEY...</span><span style="color:#545052;">&quot;
 }
 </span></code></pre>
 <ul>
-<li>Pick a random IV.</li>
-<li>Encrypt the serialized string of <code>auth_plaintext</code> with 128 bit block AES in CBC mode with Pkcs7 padding using the temporary key (<code>k_temp</code>), the result is <code>auth_ciphertext</code>. Encode this with base64.</li>
-<li>The temporary key you have picked <code>k_temp</code> is encrypted using RSA with OAEP padding scheme
-using SHA-256 with <code>gradecoin_public_key</code>, giving us <code>key_ciphertext</code>. Encode this with base 64.</li>
+<li>Pick a short temporary key (<code>k_temp</code>)</li>
+<li>Pick a random IV (<code>iv</code>).</li>
+<li>Encrypt the serialized string of <code>P_AR</code> with 128 bit block AES in CBC mode with Pkcs7 padding using the temporary key (<code>k_temp</code>), the result is <code>C_AR</code>. Encode this with base64.</li>
+<li>The temporary key you have picked <code>k_temp</code> is encrypted using RSA with OAEP padding scheme using SHA-256 with <code>gradecoin_public_key</code>, giving us <code>key_ciphertext</code>. Encode this with base64.</li>
+<li>Base64 encode the IV (<code>iv</code>) as well.</li>
 <li>The payload JSON object (<code>auth_request</code>) can be serialized now:</li>
 </ul>
 <pre style="background-color:#ffffff;">
 <code class="language-json" data-lang="json"><span style="color:#545052;">{
-    &quot;</span><span style="color:#009854;">c</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">auth_ciphertext</span><span style="color:#545052;">&quot;,
-    &quot;</span><span style="color:#009854;">iv</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">hexadecimal</span><span style="color:#545052;">&quot;,
+    &quot;</span><span style="color:#009854;">c</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">C_AR</span><span style="color:#545052;">&quot;,
+    &quot;</span><span style="color:#009854;">iv</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">iv</span><span style="color:#545052;">&quot;,
     &quot;</span><span style="color:#009854;">key</span><span style="color:#545052;">&quot;: &quot;</span><span style="color:#009854;">key_ciphertext</span><span style="color:#545052;">&quot;
 }
 </span></code></pre>
-<p>If your authentication process was valid, you will be given access and your public key fingerprint that is your address.</p>
+<p>If your authentication process was valid, you will be given access and your public key fingerprint that is your address.
+You can now sign JWTs to send authorized transaction requests.</p>
 
 
         </div>
-- 
cgit v1.2.3-70-g09d2