Changes

* POST /session/auth/start (email) -> loginSrpTokensrpToken,SRP stuff* POST /session/auth/finish (loginSrpTokensrpToken,SRP stuff,deviceInfo) -> authToken* POST /session/create [authed with authToken]() -> keyFetchToken, sessionToken* GET /accountrecovery_email/recovery_methods status [authedsessionToken] () -> list of recovery methods with "verified " status** (optional, only if user requests resend) POST /account/recovery_methodsrecovery_email/send_code resend_code [authedsessionToken] (recovery_method) -> ok** POST /account/recovery_methodsrecovery_email/verify_code (code) -> ok* GET /account/keys [authed with keyFetchToken] () -> kA/wrap(kB)* POST /certificate/sign [authedsessionToken] (pubkey) -> cert

* POST /session/auth/start (email) -> loginSrpTokensrpToken,SRP stuff* POST /session/auth/finish (loginSrpTokensrpToken,SRP stuff,deviceInfo) -> authToken* POST /session/create [authToken] () -> keyFetchToken, sessionToken* GET /account/keys [authed with keyFetchToken] () -> kA/wrap(kB)

* POST /certificate/sign [authedsessionToken] (pubkey) -> cert

* POST /password/forgot/send_code (recovery methodemail) -> forgotPasswordToken

* POST /account/reset [authed+encrypted by accountResetToken] (wrap(kB)0000,srpV,srpSalt) -> ok

* POST /auth/start in logged(email) -in state> srpToken,SRP stuff* POST /password/change/auth/start [authed] finish (srpToken,SRP stuff,deviceInfo) -> changePasswordSrpToken, SRP stuffauthToken* POST /password/change/auth/finish start [authedauthToken] (changePasswordSrpToken, SRP stuff) -> accountResetToken, keyFetchToken, accountResetToken* GET /account/keys [authed with keyFetchToken] () -> kA/wrap(kB)