Skip to main content
POST
/
signup
/
webauthn
/
verify
Verify Webauthn sign-up
curl --request POST \
  --url https://{subdomain}.auth.{region}.nhost.run/v1/signup/webauthn/verify \
  --header 'Content-Type: application/json' \
  --data '{
  "credential": {
    "id": "<string>",
    "type": "<string>",
    "rawId": "aSDinaTvuI8gbWludGxpZnk=",
    "clientExtensionResults": {
      "appid": true,
      "credProps": {
        "rk": true
      },
      "hmacCreateSecret": true
    },
    "authenticatorAttachment": "<string>",
    "response": {
      "clientDataJSON": "aSDinaTvuI8gbWludGxpZnk=",
      "transports": [
        "<string>"
      ],
      "authenticatorData": "aSDinaTvuI8gbWludGxpZnk=",
      "publicKey": "aSDinaTvuI8gbWludGxpZnk=",
      "publicKeyAlgorithm": 123,
      "attestationObject": "aSDinaTvuI8gbWludGxpZnk="
    }
  },
  "options": {
    "allowedRoles": [
      "me",
      "user"
    ],
    "defaultRole": "user",
    "displayName": "John Smith",
    "locale": "en",
    "metadata": {
      "firstName": "John",
      "lastName": "Smith"
    },
    "redirectTo": "https://my-app.com/catch-redirection"
  },
  "nickname": "<string>"
}'
{
  "session": {
    "accessToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
    "accessTokenExpiresIn": 900,
    "refreshTokenId": "2c35b6f3-c4b9-48e3-978a-d4d0f1d42e24",
    "refreshToken": "2c35b6f3-c4b9-48e3-978a-d4d0f1d42e24",
    "user": {
      "avatarUrl": "https://myapp.com/avatars/user123.jpg",
      "createdAt": "2023-01-15T12:34:56Z",
      "defaultRole": "user",
      "displayName": "John Smith",
      "email": "john.smith@nhost.io",
      "emailVerified": true,
      "id": "2c35b6f3-c4b9-48e3-978a-d4d0f1d42e24",
      "isAnonymous": false,
      "locale": "en",
      "metadata": {
        "firstName": "John",
        "lastName": "Smith"
      },
      "phoneNumber": "+12025550123",
      "phoneNumberVerified": false,
      "roles": [
        "user",
        "customer"
      ],
      "activeMfaType": "<string>"
    }
  }
}

Body

application/json

WebAuthn credential creation response and optional user profile information

credential
object
required
options
object
nickname
string

Nickname for the security key

Response

Sign up successful

Container for session information

session
object

User authentication session containing tokens and user information

I