From 7e2ddb7094d48a41051b4ebd763b8296f6224d6a Mon Sep 17 00:00:00 2001
From: Christian Grothoff <christian@grothoff.org>
Date: Fri, 1 May 2020 19:54:17 +0200
Subject: document /seed API

---
 core/api-exchange.rst | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/core/api-exchange.rst b/core/api-exchange.rst
index 5fe560a3..2fbdfbbf 100644
--- a/core/api-exchange.rst
+++ b/core/api-exchange.rst
@@ -76,6 +76,15 @@ possibly by using HTTPS.
 
   If the "Etag" is missing, the client should not cache the response and instead prompt the user again at the next opportunity. This is usually only the case if the privacy policy was not configured correctly.
 
+.. http:get:: /seed
+
+  Return an entropy seed. The exchange will return a high-entropy
+  value that will differ for every call.  The response is NOT in
+  JSON, but simply high-entropy binary data in the HTTP body.
+  This API can be used by wallets to guard themselves against
+  running on low-entropy (bad PRNG) hardware. Naturally, the entropy
+  returned MUST be mixed with locally generated entropy.
+
 .. http:get:: /keys
 
   Get a list of all denomination keys offered by the bank,
-- 
cgit v1.2.3