Initialize connect login

curl --request POST \
  --url https://{projectId}.frontendapi.corbado.io/v2/connect/login/init \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "clientInformation": {
    "bluetoothAvailable": true,
    "clientEnvHandle": "<string>",
    "visitorId": "<string>",
    "canUsePasskeys": true,
    "isUserVerifyingPlatformAuthenticatorAvailable": true,
    "isConditionalMediationAvailable": true,
    "clientCapabilities": {
      "conditionalCreate": true,
      "conditionalMediation": true,
      "conditionalGet": true,
      "hybridTransport": true,
      "passkeyPlatformAuthenticator": true,
      "userVerifyingPlatformAuthenticator": true,
      "relatedOrigins": true,
      "signalAllAcceptedCredentials": true,
      "signalCurrentUserDetails": true,
      "signalUnknownCredential": true
    },
    "javaScriptHighEntropy": {
      "platform": "<string>",
      "platformVersion": "<string>",
      "mobile": true
    },
    "isNative": true,
    "webdriver": true,
    "privateMode": true,
    "clientEnvHandleMeta": {
      "ts": 123,
      "source": "ls"
    },
    "nativeMeta": {
      "platform": "<string>",
      "platformVersion": "<string>",
      "displayName": "<string>",
      "name": "<string>",
      "version": "<string>",
      "build": "<string>",
      "deviceOwnerAuth": "none",
      "isBluetoothAvailable": true,
      "isBluetoothOn": true,
      "isGooglePlayServices": true,
      "isDeviceSecure": true,
      "error": "<string>",
      "brand": "<string>",
      "model": "<string>",
      "locale": "<string>",
      "screen": {
        "widthPoints": 123,
        "heightPoints": 123,
        "scale": 123
      },
      "sdkInitTimeMs": 123
    }
  },
  "flags": {},
  "invitationToken": "<string>"
}
'

{
  "token": "<string>",
  "expiresAt": 123,
  "frontendApiUrl": "<string>",
  "loginAllowed": true,
  "flags": {},
  "newClientEnvHandle": "<string>",
  "newClientState": "<string>",
  "conditionalUIChallenge": "<string>"
}

POST

connect

init

Initialize connect login

curl --request POST \
  --url https://{projectId}.frontendapi.corbado.io/v2/connect/login/init \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "clientInformation": {
    "bluetoothAvailable": true,
    "clientEnvHandle": "<string>",
    "visitorId": "<string>",
    "canUsePasskeys": true,
    "isUserVerifyingPlatformAuthenticatorAvailable": true,
    "isConditionalMediationAvailable": true,
    "clientCapabilities": {
      "conditionalCreate": true,
      "conditionalMediation": true,
      "conditionalGet": true,
      "hybridTransport": true,
      "passkeyPlatformAuthenticator": true,
      "userVerifyingPlatformAuthenticator": true,
      "relatedOrigins": true,
      "signalAllAcceptedCredentials": true,
      "signalCurrentUserDetails": true,
      "signalUnknownCredential": true
    },
    "javaScriptHighEntropy": {
      "platform": "<string>",
      "platformVersion": "<string>",
      "mobile": true
    },
    "isNative": true,
    "webdriver": true,
    "privateMode": true,
    "clientEnvHandleMeta": {
      "ts": 123,
      "source": "ls"
    },
    "nativeMeta": {
      "platform": "<string>",
      "platformVersion": "<string>",
      "displayName": "<string>",
      "name": "<string>",
      "version": "<string>",
      "build": "<string>",
      "deviceOwnerAuth": "none",
      "isBluetoothAvailable": true,
      "isBluetoothOn": true,
      "isGooglePlayServices": true,
      "isDeviceSecure": true,
      "error": "<string>",
      "brand": "<string>",
      "model": "<string>",
      "locale": "<string>",
      "screen": {
        "widthPoints": 123,
        "heightPoints": 123,
        "scale": 123
      },
      "sdkInitTimeMs": 123
    }
  },
  "flags": {},
  "invitationToken": "<string>"
}
'

{
  "token": "<string>",
  "expiresAt": 123,
  "frontendApiUrl": "<string>",
  "loginAllowed": true,
  "flags": {},
  "newClientEnvHandle": "<string>",
  "newClientState": "<string>",
  "conditionalUIChallenge": "<string>"
}

Authorizations

Authorization

string

header

required

After a user logs in successfully, a session is created and a JWT token is returned. This token represents the user's authenticated session. It must be included in the Authorization header as a Bearer token for all protected endpoints:

Authorization: Bearer <your-token>

The server will validate this token to authorize access.

Body

application/json

clientInformation

object

required

Show child attributes

clientInformation.bluetoothAvailable

boolean

clientInformation.clientEnvHandle

string

clientInformation.visitorId

string

clientInformation.canUsePasskeys

boolean

Deprecated, use isUserVerifyingPlatformAuthenticatorAvailable instead

clientInformation.isUserVerifyingPlatformAuthenticatorAvailable

boolean

clientInformation.isConditionalMediationAvailable

boolean

clientInformation.clientCapabilities

object

Show child attributes

clientInformation.clientCapabilities.conditionalCreate

boolean

clientInformation.clientCapabilities.conditionalMediation

boolean

clientInformation.clientCapabilities.conditionalGet

boolean

clientInformation.clientCapabilities.hybridTransport

boolean

clientInformation.clientCapabilities.passkeyPlatformAuthenticator

boolean

clientInformation.clientCapabilities.userVerifyingPlatformAuthenticator

boolean

clientInformation.clientCapabilities.signalAllAcceptedCredentials

boolean

clientInformation.clientCapabilities.signalCurrentUserDetails

boolean

clientInformation.clientCapabilities.signalUnknownCredential

boolean

clientInformation.javaScriptHighEntropy

object

Show child attributes

clientInformation.javaScriptHighEntropy.platform

string

required

clientInformation.javaScriptHighEntropy.platformVersion

string

required

clientInformation.javaScriptHighEntropy.mobile

boolean

required

clientInformation.isNative

boolean

clientInformation.webdriver

boolean

clientInformation.privateMode

boolean

clientInformation.clientEnvHandleMeta

object

Show child attributes

clientInformation.clientEnvHandleMeta.ts

integer<int64>

required

clientInformation.clientEnvHandleMeta.source

enum<string>

required

Available options:

ls,

url,

native

clientInformation.nativeMeta

object

Show child attributes

clientInformation.nativeMeta.platform

string

required

clientInformation.nativeMeta.platformVersion

string

required

clientInformation.nativeMeta.displayName

string

required

clientInformation.nativeMeta.name

string

clientInformation.nativeMeta.version

string

clientInformation.nativeMeta.build

string

clientInformation.nativeMeta.deviceOwnerAuth

enum<string>

Available options:

none,

code,

biometrics

clientInformation.nativeMeta.isBluetoothAvailable

boolean

clientInformation.nativeMeta.isBluetoothOn

boolean

clientInformation.nativeMeta.isGooglePlayServices

boolean

clientInformation.nativeMeta.isDeviceSecure

boolean

clientInformation.nativeMeta.error

string

clientInformation.nativeMeta.brand

string

clientInformation.nativeMeta.model

string

clientInformation.nativeMeta.locale

string

clientInformation.nativeMeta.screen

object

Show child attributes

clientInformation.nativeMeta.screen.widthPoints

number<float>

required

clientInformation.nativeMeta.screen.heightPoints

number<float>

required

clientInformation.nativeMeta.screen.scale

number<float>

required

clientInformation.nativeMeta.sdkInitTimeMs

integer<int64>

flags

object

required

Show child attributes

flags.{key}

string

invitationToken

string

Response

200 - application/json

Contains information about if and how a passkey login can be started.

token

string

required

expiresAt

integer<int64>

required

frontendApiUrl

string

required

flags

object

required

Show child attributes

flags.{key}

string

newClientEnvHandle

string

newClientState

string

conditionalUIChallenge

string

Create authentication event Start connect login

⌘I

API Reference

Frontend API

Backend API

Initialize connect login

Authorizations

Body

Response