Onboard a new user, generate keys, and create a Fordefi vault address for them.
Organization backup
Before adding your first end user, make sure you set an organization backup to ensure that your server-side shares are backed up.
There are several steps for onboarding new users:
- From your backend, use the Create End User API call (using a valid API User access token) to create a new end user. This endpoint takes as input an
external_id
, which you can use as a shared identifier for that user between Fordefi and your system. Once the end user is created, it should also appear also in the end user screen in the web console. - From your backend, use the Issue Authorization Token API call to receive a valid authorization token for the newly created end user. Pass this token to your client side application.
- From your client-side application, initialize the SDK and then call the
login
function, passing in the authorization token obtained in the previous step. The first time you call thelogin
function for each end user, it triggers an MPC key generation protocol, that results in the creation of the MPC shares. - From your client-side application, backup the newly generated end-user MPC shares. The Fordefi SDK supports backing up the shares to the user's personal cloud drive (iCloud or Google Drive) or using a custom encryption key, which you can then store on your backend (though the latter option raises some custody questions.) Learn more.
- From your backend, use the Create Vault API to create one ore more vaults for the newly created end user. (For example, you might want to create an EVM vault and a Solana vault.)