In brief, the authentication work as follows:

 

Server provides a token for the client to sign.

client passes the signed message and the bitcoin address back to the server.

server validates the message and honors the alias (optional) and bitcoin address as identification.