Authentication
/elevate/webauthn/verify
API Documentation
Backend Services
- Authentication
- GET/.well-known/jwks.json
- POST/elevate/webauthn
- POST/elevate/webauthn/verify
- GET/healthz
- HEAD/healthz
- POST/link/idtoken
- GET/mfa/totp/generate
- POST/pat
- POST/signin/anonymous
- POST/signin/email-password
- POST/signin/idtoken
- POST/signin/mfa/totp
- POST/signin/otp/email
- POST/signin/otp/email/verify
- POST/signin/passwordless/email
- POST/signin/passwordless/sms
- POST/signin/passwordless/sms/otp
- POST/signin/pat
- GET/signin/provider/{provider}
- GET/signin/provider/{provider}/callback
- POST/signin/webauthn
- POST/signin/webauthn/verify
- POST/signout
- POST/signup/email-password
- POST/signup/webauthn
- POST/signup/webauthn/verify
- POST/token
- POST/token/verify
- GET/user
- POST/user/deanonymize
- POST/user/email/change
- POST/user/email/send-verification-email
- POST/user/mfa
- POST/user/password
- POST/user/password/reset
- POST/user/provider/tokens
- POST/user/webauthn/add
- POST/user/webauthn/verify
- GET/verify
- GET/version
- GET
- Storage
GraphQL
- AI
Client Libraries
- JavaScript
- React
- Next.js
- Vue
- React Native
Authentication
/elevate/webauthn/verify
Verify FIDO2 Webauthn authentication using public-key cryptography
POST
/
elevate
/
webauthn
/
verify
curl --request POST \
--url https://local.auth.local.nhost.run/v1/elevate/webauthn/verify \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '{
"email": "nuno@nhost.io",
"credential": {
"id": "zCnsWvxgtMrOCeX6eA_yqQ",
"rawId": "zCnsWvxgtMrOCeX6eA_yqQ",
"response": {
"authenticatorData": "0RE6Bmg2J-FxNrC8136ZQSeTWKWtdni_Lpfv5XR4bDsdAAAAAA",
"clientDataJSON": "eyJ0eXBlIjoid2ViYXV0aG4uZ2V0IiwiY2hhbGxlbmdlIjoiTkNSSVRVU1pjeFE1ZTFhdUtUcXVlNnA4R0ZacHdxUS1kZzM4bnlWa3NCRSIsIm9yaWdpbiI6Imh0dHBzOi8vcmVhY3QtYXBvbGxvLmV4YW1wbGUubmhvc3QuaW8ifQ",
"signature": "MEUCIQDRXq3aY-gXWsuYJZhOzqqn6UpoRQfcPdNLP7hpZ7IdvQIgX5rY6TomkYUtqydu-w88fW7KeFm-0oE-5jTdLNHg9zw",
"userHandle": "8881037a-8495-48ef-8a04-ebbdb69415db"
},
"type": "public-key",
"clientExtensionResults": {}
},
"authenticatorAttachment": "platform"
}'{
"mfa": {
"ticket": "<string>"
},
"session": {
"accessToken": "<string>",
"accessTokenExpiresIn": 123,
"refreshToken": "2c35b6f3-c4b9-48e3-978a-d4d0f1d42e24",
"user": {
"activeMfaType": "totp",
"avatarUrl": "<string>",
"createdAt": "2023-11-07T05:31:56Z",
"defaultRole": "user",
"displayName": "John Smith",
"email": "john.smith@nhost.io",
"emailVerified": false,
"id": "2c35b6f3-c4b9-48e3-978a-d4d0f1d42e24",
"isAnonymous": false,
"locale": "en",
"metadata": {
"firstName": "John",
"lastName": "Smith"
},
"phoneNumber": "<string>",
"phoneNumberVerified": false,
"roles": [
"me",
"user"
]
}
}
}Authorizations
JSON Web Token to authorize requests.
Body
application/json
A valid email
Response
200
application/json
Access elevated successfully
Refresh token during authentication or when refreshing the JWT
Multi-factor authentication type. A null value deactivates MFA
Available options:
totp Available options:
me, user A valid email
A two-characters locale
Required string length:
2Available options:
me Id of the user
curl --request POST \
--url https://local.auth.local.nhost.run/v1/elevate/webauthn/verify \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '{
"email": "nuno@nhost.io",
"credential": {
"id": "zCnsWvxgtMrOCeX6eA_yqQ",
"rawId": "zCnsWvxgtMrOCeX6eA_yqQ",
"response": {
"authenticatorData": "0RE6Bmg2J-FxNrC8136ZQSeTWKWtdni_Lpfv5XR4bDsdAAAAAA",
"clientDataJSON": "eyJ0eXBlIjoid2ViYXV0aG4uZ2V0IiwiY2hhbGxlbmdlIjoiTkNSSVRVU1pjeFE1ZTFhdUtUcXVlNnA4R0ZacHdxUS1kZzM4bnlWa3NCRSIsIm9yaWdpbiI6Imh0dHBzOi8vcmVhY3QtYXBvbGxvLmV4YW1wbGUubmhvc3QuaW8ifQ",
"signature": "MEUCIQDRXq3aY-gXWsuYJZhOzqqn6UpoRQfcPdNLP7hpZ7IdvQIgX5rY6TomkYUtqydu-w88fW7KeFm-0oE-5jTdLNHg9zw",
"userHandle": "8881037a-8495-48ef-8a04-ebbdb69415db"
},
"type": "public-key",
"clientExtensionResults": {}
},
"authenticatorAttachment": "platform"
}'{
"mfa": {
"ticket": "<string>"
},
"session": {
"accessToken": "<string>",
"accessTokenExpiresIn": 123,
"refreshToken": "2c35b6f3-c4b9-48e3-978a-d4d0f1d42e24",
"user": {
"activeMfaType": "totp",
"avatarUrl": "<string>",
"createdAt": "2023-11-07T05:31:56Z",
"defaultRole": "user",
"displayName": "John Smith",
"email": "john.smith@nhost.io",
"emailVerified": false,
"id": "2c35b6f3-c4b9-48e3-978a-d4d0f1d42e24",
"isAnonymous": false,
"locale": "en",
"metadata": {
"firstName": "John",
"lastName": "Smith"
},
"phoneNumber": "<string>",
"phoneNumberVerified": false,
"roles": [
"me",
"user"
]
}
}
}