Documentation

Community

Blog

Reference

Guides

Dashboard

Support

Verify FIDO2 Webauthn authentication using public-key cryptography

/elevate/webauthn/verify

Refresh token during authentication or when refreshing the JWT

Multi-factor authentication type. A null value deactivates MFA

BearerAuth

Elevate WebAuthn Verify

Learn Nhost through guides and tutorials.

Getting Started

Database

GraphQL API

Realtime GraphQL API

Auth

Storage

Server-side code that works as API endpoints

Functions

Subdomain/Region

Allocate CPU and Memory to your backend infrastructure

Compute Resources

Service Replicas and Autoscaler

Grafana Instance configured and tailored to your project

Metrics

Environment Variables

Configure your Backend with Sensitive Data

Secrets

As simple as pushing your code to source control

Deployments

Custom Domains

Rate Limits

TLS Configuration

Overview

Tools to develop and test Nhost projects locally

Nhost CLI

Available commands to run and manage local Nhost projects

Commands

React

Get up and running with Nhost and React

Get up and running with Nhost and Next.js

Next.js

Setup Nhost with Next.js

Setup Nhost with Vue

In this quickstart guide, we'll demonstrate how to build a simple To-Do feature using Nhost and React Native.

React Native

Get up and running with Nhost and React Native

Build a Todo Manager with React

Build a Todo Manager with Next.js

Build a Todo Manager with Vue

Learn how to configure your Postgres server instance

Configuring Postgres

How to access the database directly using the connection string

Accessing the Database

List of available extensions with Nhost Postgres.

List of Available Extensions

Performance

Upgrade Major Version

Enabling Service

Local Development

Generate embeddings for your application automatically

Auto-Embeddings

Assistants

Empower your developers to code faster and better

Developer Assistant

Users

JSON Web Tokens (JWTs)

Follow this guide to sign in users with Apple.

Sign In with Apple

Follow this guide to sign in users with Azure.

Sign In with Azure

Follow this guide to sign in users with Discord.

Sign In with Discord

Follow this guide to sign in users with Facebook.

Sign In with Facebook

Follow this guide to sign in users with GitHub.

Sign In with GitHub

Follow this guide to sign in users with Google.

Sign In with Google

Follow this guide to sign in users with LinkedIn.

Sign In with LinkedIn

Follow this guide to sign in users with Spotify.

Sign In with Spotify

Follow this guide to sign in users with Twitch.

Sign In with Twitch

Follow this guide to sign in users with WorkOS.

Sign In with WorkOS

Add social sign in mechanism to existing users

Social Provider Connect

Email and Password

Sign In with Email and Password

One-Time Passwords

Sign In with One-Time Passwords

Magic Links

Sign In with a Magic Link

SMS OTP

Sign In via SMS OTP

WebAuthn and Security Keys

Sign In with WebAuthn

IDTokens

Sign In with ID tokens

Require extra permissions to perform critical operations

Elevated Permissions

Bot Protection

Learn how to customize transactional emails

Email Templates

Custom JWTs

Learn how to configure your Hasura GraphQL Engine

Configuring Hasura

Permissions

Better visibility and security for your GraphQL API

Advanced Features

Antivirus

Supported execution runtimes and package managers

Runtimes and Dependencies

Configuration

Networking

Learn how to enable healthchecks for your services

Healthchecks

Resources

Learn how to use a private registry for your images

Registry

Developing with the Nhost stack and Run services locally

Local development

Configuration Overlays

Learn how to deploy your Run services using the CLI

CLI & CI Deployments

Learn how to start a development instance of Nhost

Learn how to migrate old projects to use the new configuration file

Migrate to Nhost Config

Learn how to run multiple Nhost projects locally

Running Multiple Projects

Learn about using seeds to populate your local database

Seeds

Get public keys for JWT verification in JWK Set format

/.well-known/jwks.json

Elevate access for an already signed in user using FIDO2 Webauthn

/elevate/webauthn

/healthz

Link a user account with the provider's account using an id token

/link/idtoken

Generate Secret to request the activation of Time-Based One-Time password (TOTP)

/mfa/totp/generate

/pat

/signin/anonymous

/signin/email-password

/signin/idtoken

Sign In with a Time-based One-Time Password (TOTP)

/signin/mfa/totp

Sign in with a one time password sent to user's email. If the user doesn't exist, it will be created. The options object is optional and can be used to configure the user's when signing up a new user. It is ignored if the user already exists.

/signin/otp/email

Verify OTP and return a session if validation is successful

/signin/otp/email/verify

Sign in with magic link sent to user's email. If the user doesn't exist, it will be created. The options object is optional and can be used to configure the user's when signing up a new user. It is ignored if the user already exists.

/signin/passwordless/email

Send a one-time password (OTP) to a user through SMS 

/signin/passwordless/sms

Verify and authenticate the one-time password (OTP) received by SMS

/signin/passwordless/sms/otp

/signin/pat

/signin/provider/{provider}

OAuth Callback used by the provider when redirecting the user back to your application

/signin/provider/{provider}/callback

/signin/webauthn

Verify WebAuthn Sign In to complete authentication

/signin/webauthn/verify

/signout

/signup/email-password

/signup/webauthn

/signup/webauthn/verify

/token

If request body is not passed the autorization header will be used to be verified

/token/verify

/user

Deanonymize an anonymous user in adding missing email or email+password, depending on the chosen authentication method. Will send a confirmation email if the server is configured to do so

/user/deanonymize

/user/email/change

/user/email/send-verification-email

/user/mfa

Change user password. The user must be authenticated or provide a ticket

/user/password

Request a password reset. An email with a verification link will be sent to the user's address

/user/password/reset

/user/provider/tokens

Add WebAuthn Security Key for web or mobile devices

/user/webauthn/add

/user/webauthn/verify

Verify tickets created by email verification, email passwordless authentication (magic link), or password reset

/verify

/version

Upload File

Replace File

Delete File

Download File

Retrieve presigned URL to retrieve the file. Expiration of the URL is
determined by bucket configuration


API Documentation

Backend Services

GraphQL

Client Libraries

/elevate/webauthn/verify

Authorizations

Body

Response