rooty/yubikey-val
1
0
Fork 0
mirror of https://github.com/Yubico/yubikey-val.git synced 2025-02-27 06:54:16 +01:00
Code Issues Projects Releases Wiki Activity

Use https in documentation

Browse Source
This commit is contained in:
Jean Paul Galea 2018-11-09 17:46:27 +01:00
parent 23d825dbea
commit c8c7bd8359
No known key found for this signature in database
GPG Key ID: FC31B42E20461D82
2 changed files with 8 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
doc/Getting_Started_Writing_Clients.adoc
View File

@ -60,7 +60,7 @@ make the request unique. The request is part of the HTTP GET URL,
encoded using normal parameter/value pairs. For example (broken into encoded using normal parameter/value pairs. For example (broken into
two lines for legibility): two lines for legibility):
http://api2.yubico.com/wsapi/2.0/verify?id=1&otp=cccccccbcjdifc\ https://api2.yubico.com/wsapi/2.0/verify?id=1&otp=cccccccbcjdifc\
trndncchkftchjlnbhvhtugdljibej&nonce=aef3a7835277a28da831005c2ae3b919e2076a62 trndncchkftchjlnbhvhtugdljibej&nonce=aef3a7835277a28da831005c2ae3b919e2076a62
The servers that Yubico provides are: The servers that Yubico provides are:

15
doc/Validation_Protocol_V2.0.adoc
View File

@ -2,14 +2,13 @@
=== Introduction === Introduction
All requests are HTTP GET requests. As such, all parameters must be All requests are HTTPS GET requests. As such, all parameters must be
properly URL encoded. In particular, some base64 characters (such as properly URL encoded. In particular, some base64 characters (such as
"+") in the value fields needs to be escaped. "+") in the value fields needs to be escaped.
Each response sent by the server is signed. To verify that the Each response sent by the server is signed. To verify that the
response has not been tampered with, clients either verify the HMAC response has not been tampered with, clients must use HTTPS connections
signature or use HTTPS connections (and verify the server and optionally verify the HMAC signature.
certificate).
=== Generating signatures === Generating signatures
@ -59,9 +58,9 @@ the response is the same as the "otp" supplied in the request.
=== Request === Request
Construct an HTTP GET call to Construct an HTTPS GET call to
http://api.yubico.com/wsapi/2.0/verify https://api.yubico.com/wsapi/2.0/verify
with the following parameters (note that this request need not be signed): with the following parameters (note that this request need not be signed):
@ -107,12 +106,12 @@ with the following parameters (note that this request need not be signed):
An example request: An example request:
http://api.yubico.com/wsapi/2.0/verify?otp=vvvvvvcucrlcietctckflvnncdgckubflugerlnr&id=87&timeout=8&sl=50&nonce=askjdnkajsndjkasndkjsnad https://api.yubico.com/wsapi/2.0/verify?otp=vvvvvvcucrlcietctckflvnncdgckubflugerlnr&id=87&timeout=8&sl=50&nonce=askjdnkajsndjkasndkjsnad
And if you require additional information on timestamp and session And if you require additional information on timestamp and session
counters: counters:
http://api.yubico.com/wsapi/2.0/verify?id=87&otp=vvvvvvcucrlcietctckflvnncdgckubflugerlnr&timeout=8&sl=50&nonce=askjdnkajsndjkasndkjsnad&timestamp=1 https://api.yubico.com/wsapi/2.0/verify?id=87&otp=vvvvvvcucrlcietctckflvnncdgckubflugerlnr&timeout=8&sl=50&nonce=askjdnkajsndjkasndkjsnad&timestamp=1
=== Response === Response