Identity
This ASP.NET Core Service is responsible for:
The user verification story is handled similar to WhatsApp via an SMS code. Initiating a verification challenge will send a SMS to the provided phone number which contains a server side generated 6-digit security code which must be used on the resolve endpoint. On success the client can start requesting OAuth tokens.
YoApp provides an implementation if ISmsSender for the Twilio messaging service which is used by default when deployed.
| URL | Method | Params | Success | Error |
|---|---|---|---|---|
| /verification/challenge/ | POST | challengeDto (json) | OK | Bad Request |
| /verification/resolve/ | POST | resolveDto (json) | OK | Bad Request |
Authorization is handled by the OpenIdDict Server component on a OAuth2 ClientCredentials basis. Furthermore the Data protection keys are stored on a Azure Blob storage so that other services can authenticate OAuth2 Bearer tokens on the request Http/OWIN pipeline.
| URL | Method | Params | Success | Error |
|---|---|---|---|---|
| /connect/token/ | POST | requestDto (json) | OKResult (json) | Bad Request |
The Account endpoint offers all basic methods to retrieve a clients user information and change properties like the status message.
This Endpoint is only accessible for authenticated users.
| URL | Method | Params | Success | Error |
|---|---|---|---|---|
| /account/ | GET | . | OKResult (json) | Status 500 |
| /account/ | POST | dto(json) | OKResult (json) | Status 500 |
| /account/name/ | GET | . | OKResult (name) | Status 500 |
| /account/name/ | PATCH | $name | OK | Status 500 |
| /account/status/ | GET | . | OKResult (status) | Status 500 |
| /account/status/ | PATCH | $status | OK | Status 500 |
