The interaction between the server and the client occurs mainly through a Web Socket, but if it is necessary to download a file, HTTP requests are used.



The Web Socket and HTTP sections list all the requests the server receives and all the responses it sends to these requests. The content of the requests and responses is taken directly from the actual exchanges between the client and the server to provide a clear understanding of the form and type of data exchanged during each interaction.


The only data the client sends to the server in decrypted form is the client's phone number, referred to as openUserId. The server is designed such that this number is not stored. It is transmitted in decrypted form only during three specific operations: registering a new user, updating the user's private and public keys, and deleting a user from the server. For all other operations, only encrypted data is exchanged, which can be decrypted solely on client devices and not on the server.


This approach inherently provides a high level of data security, even when using unencrypted HTTP traffic. However, this configuration of the Jetico Messenger Server is recommended only for initial installation, configuration, and testing. For complete security, the installation of an SSL certificate and the use of HTTPS are essential.