package authentication
Ordering
- Alphabetic
Visibility
- Public
- Protected
Type Members
- trait HasExpiry extends AnyRef
- class MemberAuthenticationService extends NamedLogging with FlagCloseable
The authentication service issues tokens to members after they have successfully completed the following challenge response protocol and after they have accepted the service agreement of the synchronizer.
The authentication service issues tokens to members after they have successfully completed the following challenge response protocol and after they have accepted the service agreement of the synchronizer. The tokens are required for connecting to the sequencer.
In order for a member to subscribe to the sequencer, it must follow a few steps for it to authenticate. Assuming the synchronizer already has knowledge of the member's public keys, the following steps are to be taken:
- member sends request to the synchronizer for authenticating
- synchronizer returns a nonce (a challenge random number)
- member takes the nonce, concatenates it with the identity of the synchronizer, signs it and sends it back
- synchronizer checks the signature against the key of the member. if it matches, create a token and return it
- member will use the token when subscribing to the sequencer
- trait MemberAuthenticationServiceFactory extends AnyRef
- class MemberAuthenticationServiceImpl extends MemberAuthenticationService with TopologyTransactionProcessingSubscriber
- class MemberAuthenticationStore extends AnyRef
- final case class StoredAuthenticationToken(member: Member, expireAt: CantonTimestamp, token: AuthenticationToken) extends Product with Serializable
- final case class StoredNonce(member: Member, nonce: Nonce, generatedAt: CantonTimestamp, expireAt: CantonTimestamp) extends HasExpiry with Product with Serializable
Value Members
- object MemberAuthenticationService
- object MemberAuthenticationServiceFactory
- object MemberAuthenticator
- object StoredNonce extends Serializable