Complete End User Registration with Wallets

curl --request POST \
  --url https://api.dfns.io/auth/registration/enduser \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{
  "firstFactorCredential": {
    "credentialKind": "Fido2",
    "credentialInfo": {
      "credId": "<string>",
      "clientData": "<string>",
      "attestationData": "<string>"
    },
    "credentialName": "<string>"
  },
  "secondFactorCredential": {
    "credentialKind": "Fido2",
    "credentialInfo": {
      "credId": "<string>",
      "clientData": "<string>",
      "attestationData": "<string>"
    },
    "credentialName": "<string>"
  },
  "recoveryCredential": {
    "credentialKind": "RecoveryKey",
    "credentialInfo": {
      "credId": "<string>",
      "clientData": "<string>",
      "attestationData": "<string>"
    },
    "encryptedPrivateKey": "<string>",
    "credentialName": "<string>"
  },
  "wallets": [
    {
      "network": "Algorand",
      "name": "<string>"
    }
  ]
}'

{
  "credential": {
    "uuid": "<string>",
    "kind": "Fido2",
    "name": "<string>"
  },
  "user": {
    "id": "<string>",
    "username": "<string>",
    "orgId": "<string>"
  },
  "authentication": {
    "token": "<string>"
  },
  "wallets": [
    {
      "id": "wa-1f04s-lqc9q-xxxxxxxxxxxxxxxx",
      "network": "Ethereum",
      "address": "0x00e3495cf6af59008f22ffaf32d4c92ac33dac47",
      "name": "trading hot wallet",
      "signingKey": {
        "id": "key-6ece3-9l565-xxxxxxxxxxxxxxxx",
        "scheme": "ECDSA",
        "curve": "secp256k1",
        "publicKey": "e2375c8c9e87bfcd0be8f29d76c818cabacd51584f72cb2222d49a13b036d84d3d"
      },
      "status": "Active",
      "dateCreated": "2023-04-14T20:41:28.715Z",
      "custodial": true,
      "tags": []
    }
  ]
}

Complete End User Registration with Wallets

Completes the end user registration process and creates the user’s initial credentials along with delegated wallets for the new end user.

The type of credentials being registered is determined by the credentialKind field in the nested objects (firstFactorCredential , secondFactorCredential and RecoveryCredential). Supported credential kinds are:

Fido2: User action is signed by a user’s signing device using WebAuthn.
Key: User action is signed by a user’s, or token’s, private key.
PasswordProtectedKey: User action is signed by a user’s, or token’s, private key. The encrypted version of the private key is stored by Dfns and returns during the signing flow for the user to decrypt it.

The number of delegated wallets created and the wallet types are determined by the wallets specifications. The end user is automatically assigned DfnsDefaultEndUserAccess managed permission that grants the end user full access to the wallets.

POST

auth

registration

enduser

Complete End User Registration with Wallets

curl --request POST \
  --url https://api.dfns.io/auth/registration/enduser \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{
  "firstFactorCredential": {
    "credentialKind": "Fido2",
    "credentialInfo": {
      "credId": "<string>",
      "clientData": "<string>",
      "attestationData": "<string>"
    },
    "credentialName": "<string>"
  },
  "secondFactorCredential": {
    "credentialKind": "Fido2",
    "credentialInfo": {
      "credId": "<string>",
      "clientData": "<string>",
      "attestationData": "<string>"
    },
    "credentialName": "<string>"
  },
  "recoveryCredential": {
    "credentialKind": "RecoveryKey",
    "credentialInfo": {
      "credId": "<string>",
      "clientData": "<string>",
      "attestationData": "<string>"
    },
    "encryptedPrivateKey": "<string>",
    "credentialName": "<string>"
  },
  "wallets": [
    {
      "network": "Algorand",
      "name": "<string>"
    }
  ]
}'

{
  "credential": {
    "uuid": "<string>",
    "kind": "Fido2",
    "name": "<string>"
  },
  "user": {
    "id": "<string>",
    "username": "<string>",
    "orgId": "<string>"
  },
  "authentication": {
    "token": "<string>"
  },
  "wallets": [
    {
      "id": "wa-1f04s-lqc9q-xxxxxxxxxxxxxxxx",
      "network": "Ethereum",
      "address": "0x00e3495cf6af59008f22ffaf32d4c92ac33dac47",
      "name": "trading hot wallet",
      "signingKey": {
        "id": "key-6ece3-9l565-xxxxxxxxxxxxxxxx",
        "scheme": "ECDSA",
        "curve": "secp256k1",
        "publicKey": "e2375c8c9e87bfcd0be8f29d76c818cabacd51584f72cb2222d49a13b036d84d3d"
      },
      "status": "Active",
      "dateCreated": "2023-04-14T20:41:28.715Z",
      "custodial": true,
      "tags": []
    }
  ]
}

Authentication

❌ Organization User (CustomerEmployee)
❌ Delegated User (EndUser)
❌ Service Account
✅ Registration Code

Required Permissions

No permission required.

Authorizations

Authorization

string

header

required

Bearer Token: Used to authenticate API requests. More details how to generate the token: Authentication flows

Body

application/json

firstFactorCredential

object

required

Fido2/Passkeys
Public/Private key pair
<Deprecated> Password
Password-protected Key

Show child attributes

wallets

object[]

required

Minimum length: 1

Show child attributes

secondFactorCredential

object

Fido2/Passkeys
Public/Private key pair
<Deprecated> TOTP
Password-protected Key

Show child attributes

recoveryCredential

object

Show child attributes

Response

200 - application/json

Success

credential

object

required

Show child attributes

user

object

required

Show child attributes

authentication

object

required

Show child attributes

wallets

object[]

required

Show child attributes

Complete User Registration

Resend Registration Code

⌘I

API Authorization

Identity & Access Management

Wallets & Transactions

Management

Webhooks

Complete End User Registration with Wallets

Authentication

Required Permissions

Authorizations

Body

Response

API Authorization

Identity & Access Management

Wallets & Transactions

Management

Webhooks

​Authentication

​Required Permissions

Authorizations

Body

Response

Authentication

Required Permissions