Finish login with an existing passkey

curl --request POST \
  --url https://backendapi.corbado.io/v2/passkey/login/finish \
  --header 'Authorization: Basic <encoded-value>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "userID": "<string>",
  "assertionResponse": "<string>",
  "clientInformation": {
    "remoteAddress": "::ffff:172.18.0.1",
    "userAgent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36",
    "userVerifyingPlatformAuthenticatorAvailable": true,
    "conditionalMediationAvailable": true,
    "clientCapabilities": {
      "conditionalCreate": true,
      "conditionalMediation": true,
      "hybridTransport": true,
      "passkeyPlatformAuthenticator": true,
      "userVerifyingPlatformAuthenticator": true
    },
    "parsedDeviceInfo": {
      "browserName": "<string>",
      "browserVersion": "<string>",
      "osName": "<string>",
      "osVersion": "<string>"
    },
    "clientEnvHandle": "<string>",
    "javascriptFingerprint": "<string>",
    "javaScriptHighEntropy": {
      "platform": "<string>",
      "platformVersion": "<string>",
      "mobile": true
    },
    "bluetoothAvailable": true,
    "passwordManagerAvailable": true,
    "privateMode": true,
    "nativeMeta": {
      "build": "<string>",
      "deviceOwnerAuth": "<string>",
      "isPlatformAuthenticatorAPISupported": true,
      "isBluetoothAvailable": true,
      "isBluetoothOn": true,
      "googlePlayServices": true,
      "deviceSecure": true,
      "brand": "<string>",
      "model": "<string>"
    }
  },
  "processID": "<string>",
  "trackingID": "<string>",
  "signPasskeyData": true
}
'

{
  "passkeyData": {
    "id": "<string>",
    "userID": "<string>",
    "username": "<string>",
    "ceremonyType": "local",
    "challengeID": "<string>",
    "aaguidDetails": {
      "aaguid": "<string>",
      "name": "<string>",
      "iconLight": "<string>",
      "iconDark": "<string>"
    }
  },
  "signedPasskeyData": "<string>"
}

POST

passkey

finish

Finish login with an existing passkey

curl --request POST \
  --url https://backendapi.corbado.io/v2/passkey/login/finish \
  --header 'Authorization: Basic <encoded-value>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "userID": "<string>",
  "assertionResponse": "<string>",
  "clientInformation": {
    "remoteAddress": "::ffff:172.18.0.1",
    "userAgent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36",
    "userVerifyingPlatformAuthenticatorAvailable": true,
    "conditionalMediationAvailable": true,
    "clientCapabilities": {
      "conditionalCreate": true,
      "conditionalMediation": true,
      "hybridTransport": true,
      "passkeyPlatformAuthenticator": true,
      "userVerifyingPlatformAuthenticator": true
    },
    "parsedDeviceInfo": {
      "browserName": "<string>",
      "browserVersion": "<string>",
      "osName": "<string>",
      "osVersion": "<string>"
    },
    "clientEnvHandle": "<string>",
    "javascriptFingerprint": "<string>",
    "javaScriptHighEntropy": {
      "platform": "<string>",
      "platformVersion": "<string>",
      "mobile": true
    },
    "bluetoothAvailable": true,
    "passwordManagerAvailable": true,
    "privateMode": true,
    "nativeMeta": {
      "build": "<string>",
      "deviceOwnerAuth": "<string>",
      "isPlatformAuthenticatorAPISupported": true,
      "isBluetoothAvailable": true,
      "isBluetoothOn": true,
      "googlePlayServices": true,
      "deviceSecure": true,
      "brand": "<string>",
      "model": "<string>"
    }
  },
  "processID": "<string>",
  "trackingID": "<string>",
  "signPasskeyData": true
}
'

{
  "passkeyData": {
    "id": "<string>",
    "userID": "<string>",
    "username": "<string>",
    "ceremonyType": "local",
    "challengeID": "<string>",
    "aaguidDetails": {
      "aaguid": "<string>",
      "name": "<string>",
      "iconLight": "<string>",
      "iconDark": "<string>"
    }
  },
  "signedPasskeyData": "<string>"
}

Authorizations

Authorization

string

header

required

Basic authentication is used to authenticate requests to the Backend API. The username is the project ID and the password is the API secret.

The project ID and API secret can be found in the Developer Panel.

Body

application/json

userID

string

required

ID of the user

assertionResponse

string

required

clientInformation

object

required

Show child attributes

clientInformation.remoteAddress

string

required

Client's IP address

Example:

"::ffff:172.18.0.1"

clientInformation.userAgent

string

required

Client's user agent

Example:

"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36"

clientInformation.userVerifyingPlatformAuthenticatorAvailable

boolean

required

clientInformation.conditionalMediationAvailable

boolean

required

clientInformation.clientCapabilities

object

required

Show child attributes

clientInformation.clientCapabilities.conditionalCreate

boolean

clientInformation.clientCapabilities.conditionalMediation

boolean

clientInformation.clientCapabilities.hybridTransport

boolean

clientInformation.clientCapabilities.passkeyPlatformAuthenticator

boolean

clientInformation.clientCapabilities.userVerifyingPlatformAuthenticator

boolean

clientInformation.parsedDeviceInfo

object

required

Show child attributes

clientInformation.parsedDeviceInfo.browserName

string

required

clientInformation.parsedDeviceInfo.browserVersion

string

required

clientInformation.parsedDeviceInfo.osName

string

required

clientInformation.parsedDeviceInfo.osVersion

string

required

clientInformation.clientEnvHandle

string

Client's environment handle

clientInformation.javascriptFingerprint

string

Client's fingerprint

clientInformation.javaScriptHighEntropy

object

Show child attributes

clientInformation.javaScriptHighEntropy.platform

string

required

clientInformation.javaScriptHighEntropy.platformVersion

string

required

clientInformation.javaScriptHighEntropy.mobile

boolean

required

clientInformation.bluetoothAvailable

boolean

Client's Bluetooth availability

clientInformation.passwordManagerAvailable

boolean

Client's password manager availability

clientInformation.privateMode

boolean

clientInformation.nativeMeta

object

Show child attributes

clientInformation.nativeMeta.build

string

required

clientInformation.nativeMeta.deviceOwnerAuth

string

clientInformation.nativeMeta.isPlatformAuthenticatorAPISupported

boolean

clientInformation.nativeMeta.isBluetoothAvailable

boolean

clientInformation.nativeMeta.isBluetoothOn

boolean

clientInformation.nativeMeta.googlePlayServices

boolean

clientInformation.nativeMeta.deviceSecure

boolean

clientInformation.nativeMeta.brand

string

clientInformation.nativeMeta.model

string

processID

string

required

trackingID

string

required

signPasskeyData

boolean

Response

Passkey login succeeded.

passkeyData

object

required

Show child attributes

passkeyData.id

string

required

passkeyData.userID

string

required

passkeyData.username

string

required

passkeyData.ceremonyType

enum<string>

required

Available options:

local,

cda,

security-key

passkeyData.challengeID

string

required

passkeyData.aaguidDetails

object

required

Show child attributes

passkeyData.aaguidDetails.aaguid

string

required

passkeyData.aaguidDetails.name

string

required

passkeyData.aaguidDetails.iconLight

string

required

passkeyData.aaguidDetails.iconDark

string

required

signedPasskeyData

string

Start login with an existing passkey Verify signedPasskeyData from a passkey login

⌘I

API Reference

Frontend API

Backend API

Finish login with an existing passkey

Authorizations

Body

Response