refactor(server::{useragent::auth, client::auth}): use random based + timestamp nonce instead of monotonic counter in database

2026-04-17 16:14:45 +02:00
parent 51e6571d80
commit 0e09afda5d
24 changed files with 320 additions and 466 deletions
--- a/protobufs/client/auth.proto
+++ b/protobufs/client/auth.proto
@@ -10,8 +10,8 @@ message AuthChallengeRequest {
 }

 message AuthChallenge {
-  bytes pubkey = 1;
-  int32 nonce = 2;
+  uint64 timestamp_nanos = 1;
+  bytes random = 2;
 }

 message AuthChallengeSolution {
--- a/protobufs/user_agent/auth.proto
+++ b/protobufs/user_agent/auth.proto
@@ -8,7 +8,8 @@ message AuthChallengeRequest {
 }

 message AuthChallenge {
-  int32 nonce = 1;
+  uint64 timestamp_nanos = 1;
+  bytes random = 2;
 }

 message AuthChallengeSolution {